George Burgyan CGI Counter Input Validation Vulnerability
BID:1202
Info
George Burgyan CGI Counter Input Validation Vulnerability
| Bugtraq ID: | 1202 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | May 15 2000 12:00AM |
| Updated: | May 15 2000 12:00AM |
| Credit: | Posted to Bugtraq on May 15, 2000 by Howard M. Kash III <[email protected]>. |
| Vulnerable: |
George Burgyan CGI Counter 4.0.7 George Burgyan CGI Counter 4.0.2 |
| Not Vulnerable: | |
Discussion
George Burgyan CGI Counter Input Validation Vulnerability
Due to unchecked code that handles user input in George Burgyan's CGI Counter, remote execution of arbitrary commands at the same privilege level as the web server it is running on is possible.
Due to unchecked code that handles user input in George Burgyan's CGI Counter, remote execution of arbitrary commands at the same privilege level as the web server it is running on is possible.
Exploit / POC
Solution / Fix
George Burgyan CGI Counter Input Validation Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
George Burgyan CGI Counter Input Validation Vulnerability
References:
References: