CGI.Guestbook.SSI.Command.Execution
Description
This indicates an attempt to exploit a remote command execution vulnerability in the Guestbook software.
The vulnerability is caused by improper user input sanitation. A malicious user may include some SSI commands to execute remote arbitrary commands on the vulnerable system.
Affected Products
Matt Wright GuestBook 2.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently, we are not aware of any vendor-supplied patch for this issue. We recommend disabling SSI server extensions as a temporary solution.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |