| VID |
21079 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The '/cgi-bin/rwwwshell.pl' CGI is installed.
An attacker could configure the Reverse-WWW-Tunnel-Backdoor script on the victim's machine to connect to a remote machine running the same script in server mode at pre-configured intervals. Each time a connection takes place, the client will accept commands from the server and run them on the victim host.
* References:
http://www.iss.net/security_center/static/2293.php
http://packetstormsecurity.org/groups/thc/fw-backd.htm |
| Recommendation |
If this backdoor is found, the affected system should be isolated from your network(s) and considered completely compromised. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
