Results 1 to 1 of 1

Thread: Vulnerability: WebBBS Remote Command Execution

Thread Tools
- Show Printable Version
Display
- Linear Mode
- Switch to Hybrid Mode
- Switch to Threaded Mode

June 21st, 2002, 06:50 AM #1
s0nIc

View Profile

View Forum Posts
Fastest Thing Alive

Join Date

Sep 2001

Location

Sydney

Posts

1,584
Vulnerability: WebBBS Remote Command Execution

WebBBS does not sufficiently filter shell metacharacters from CGI parameters. As a result, remote attackers may execute arbitrary commands on the underlying shell of the system hosting the vulnerable software.

Remote attackers may gain local, interactive access to the host with the privileges of the webserver process as a result of successful exploitation.

Remote: Yes

Exploit: http://online.securityfocus.com/data...bbbsexploit.pl

Source: http://www.xatrix.org/article1638.html
Reply With Quote

Quick Navigation Miscellaneous Security Discussions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: Vulnerability: WebBBS Remote Command Execution

Thread Tools

Display

Vulnerability: WebBBS Remote Command Execution

Posting Permissions