CGI.Simplestguest.Remote.Command.Execution

description-logoDescription

It indicates an attempt to execute potentially malicious command via simplestguest.cgi program.


simplestguest.cgi CGI program by Leif Wright is designed to coordinate guestbook submissions from website visitors. Due to inadequate user input checking, a remote attacker can execute arbitrary commands on a target system via shell metacharacters in the guestbook parameter.

affected-products-logoAffected Products

Any unprotected Leif M. Wright simplestguest.cgi 2.0 is vulnerable to the attack.

Impact logoImpact

Attackers can execute arbitrary commands on the victim system.

recomended-action-logoRecommended Actions

Apply appropriate patches or Upgrade the system to the latest non-vulnerable version.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)