| VID |
21044 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The 'formmail' CGI is installed.
There exist several vulnerabilities such as the following:
1. The FormMail CGI program contains a vulnerability that allows a remote attacker to execute arbitrary commands on a victim's server. This vulnerability is present in version 1.0 of the FormMail program by Matt Wright.
* recipient=root@localhost%0Acat%20/etc/passwd&email=secui@localhost&subject=test
2. The FormMail CGI program contains a vulnerability that allows remote sites to make use of your web server's resources by using your FormMail program for their own sites. This is present in versions of FormMail prior to v1.3 by Matt Wright.
* References:
http://www.iss.net/security_center/static/299.php |
| Recommendation |
If it's not needed, remove it from the CGI directory, or disable access to the FormMail script until you can upgrade to the latest version.
* reference site: http://worldwidemart.com/scripts/formmail.shtml |
| Related URL |
CVE-1999-0172,CVE-1999-0173 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
