|
Family: Gain a shell remotely --> Category: destructive_attack
Shell Command Execution Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for the filtering of dangerous meta characters from network binded scripts
Detailed Explanation for this Vulnerability Test
The remote port seems to be running some form of shell script,
with some provided user input. The input is not stripped for such meta
characters as ` ' | , etc. This would allow a remote attacker to
execute arbitrary code.
Solution : Make sure all meta characters are filtered out, or close the port
for access from untrusted networks
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|