CGI.CSLiveSupport.Remote.Command.Execution.B

description-logoDescription

This indicates a possible exploit of a Remote Code Execution Vulnerability in csLiveSupport.cgi of CGIScript.net csLiveSupport.
An attacker may send a specially crafted HTTP request containing link to malicious perl code on setup parameter, which will be run on the affected server within the privilege of web server process. csLiveSupport is a script for providing live web support.

affected-products-logoAffected Products

CGISCRIPT.NET csLiveSupport 1.0

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)