Cobalt RaQ2 Cgiwrap Network Vulnerability

Summary

'cgiwrap' is installed. If you are running an unpatched Cobalt RaQ, the version of cgiwrap distributed with that system has a known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon (root or nobody). This flaw exists only on the Cobalt modified cgiwrap. Standard builds of cgiwrap are not affected.

Solution

upgrade your Cobalt RaQ to apply fix

Severity

Classification

CVE CVE-1999-1530, CVE-2000-0431

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Admbook PHP Code Injection Flaw
AdaptBB Multiple Input Validation Vulnerabilities
AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
Astium VoIP PBX SQL Injection Vulnerability
AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities

Cobalt RaQ2 cgiwrap

Take action and discover your vulnerabilities