CGI.CSLiveSupport.Remote.Command.Execution.B
Description
This indicates a possible exploit of a Remote Code Execution Vulnerability in csLiveSupport.cgi of CGIScript.net csLiveSupport.
An attacker may send a specially crafted HTTP request containing link to malicious perl code on setup parameter, which will be run on the affected server within the privilege of web server process. csLiveSupport is a script for providing live web support.
Affected Products
CGISCRIPT.NET csLiveSupport 1.0
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Apply appropriate patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |