Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> guestbook.pl


Vulnerability Assessment Details

guestbook.pl

Vulnerability Assessment Summary
Searches for the existence of /cgi-bin/guestbook.pl

Detailed Explanation for this Vulnerability Assessment
The 'guestbook.pl' is installed. This CGI has
a well documented security flaw that lets anyone execute arbitrary
commands with the rights of the http daemon (root or nobody).

Solution : remove it from /cgi-bin.

Network Security Threat Level: High

Networks Security ID: 776

Vulnerability Assessment Copyright: This script is Copyright (C) 1999 Mathieu Perrin

Cables, Connectors

DELL Desktop C2D 3.33GHz-CPU 4Gb-RAM 2Tb-HDD DVD±RW MsOffice Win-XP Pro3 Kbd+Mse
$339.99
DELL Desktop C2D 3.33GHz-CPU 4Gb-RAM 2Tb-HDD DVD±RW MsOffice Win-XP Pro3 Kbd+Mse pictureASUS PRIME Z270-A LGA1151 / i7 7700k (delid) CPU Combo Kit w 256gb M.2 ssd
$425.0
ASUS PRIME Z270-A LGA1151 / i7 7700k (delid) CPU Combo Kit w 256gb M.2 ssd pictureSR0PK Intel Quad Core i7-3770 3.4GHz 8M 5GT/s LGA1155/Socket H2 CPU Processor
$97.88
SR0PK Intel Quad Core i7-3770 3.4GHz 8M 5GT/s LGA1155/Socket H2 CPU Processor pictureIntel Core i3-6100 Skylake Processor 3.7GHz 8.0GT/s 3MB LGA 1151 CPU, Retail
$18.99
Intel Core i3-6100 Skylake Processor 3.7GHz 8.0GT/s 3MB LGA 1151 CPU, Retail picture


Discussions

No Discussions have been posted on this vulnerability.