Signature Detail
Short Name |
HTTP:CGI:CPANEL5-GB-EXEC |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
cpanel perl execution http open |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: CPanel 5 guestbook.cgi Command Execution
This signature detects attempts to exploit a known vulnerability in guestbook.cgi that ships with CPanel. CPanel versions 5 and earlier are vulnerable. Attackers can embed special characters in a maliciously crafted request to the host to execute arbitrary commands with user guestbook.cgi privileges.
Extended Description
A remote command execution vulnerability has been discovered in the cPanel CGI Application. This issue occurs due to insufficient sanitization of externally supplied data to the 'guestbook.cgi' script. An attacker may exploit this vulnerability to execute commands in the security context of the web server hosting the affected script. This vulnerability has been reported to affect cPanel version 5, previous versions may also be affected.
Affected Products
- cPanel 5.0.0
References
- BugTraq: 6882
- URL: http://securityvulns.com/docs4104.html