|
Family: CGI abuses --> Category: attack
K-COLLECT CSV-DB CSV_DB.CGI Remote Command Execution Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for K-COLLECT CSV-DB remote command execution flaw
Detailed Explanation for this Vulnerability Test
The remote host is running K-COLLECT csv-Database, a web application
written in perl.
The remote version of this software is vulnerable to remote command
execution flaw through the script 'cvs_db.cgi'.
A malicious user could exploit this flaw to execute arbitrary commands on
the remote host.
Solution : Remove this script.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|