Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote malicious users to execute arbitrary commands.