|
Family: CGI abuses --> Category: destructive_attack
MSQL CGI overflow Vulnerability Scan
Vulnerability Scan Summary Overflows the remote CGI buffer
Detailed Explanation for this Vulnerability Test
It seems possible to overflow the remote MSQL cgi
by making a request like :
GET /cgi-bin/w3-msql/AAAA...AAAA
This allows a possible hacker to execute arbitrary code
as the httpd server (nobody or root).
Solution : remove this CGI.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|