Summary
The remote host is running Easy Message Board, a bulletin board system written in perl.
The remote version of this script contains an input validation flaw which may be used by an attacker to perform a directory traversal attack or execute arbitrary commands on the remote host with the privileges of the web server.
Solution
Upgrade to the newest version of this CGI or disable it
Severity
Classification
-
CVE CVE-2005-1549, CVE-2005-1550 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities
- Advantech Studio 'NTWebServer.exe' Directory Traversal Vulnerability
- ActualAnalyzer Lite 'ant' Cookie Parameter Remote Command Execution Vulnerability
- admin.cgi overflow
- Apache Axis2 Document Type Declaration Processing Security Vulnerability