Command Execution Vulnerability in Un-CGI by Midwinter
CVE-2001-1241

Currently unrated

Key Information:

Vendor

Steve Grimm

Status
Un-cgi
Vendor
CVE Published:
17 July 2001

What is CVE-2001-1241?

The Un-CGI tool, versions 1.9 and earlier, lacks proper verification of execution bits in CGI scripts before execution. This oversight allows attackers to exploit the system by crafting a malicious document that initiates with '#!' followed by the desired executable program. By manipulating CGI execution, unauthorized individuals can execute arbitrary commands on the server, posing a significant risk to system integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.midwinter.com/~koreth/uncgi-changes.html
x_refsource_CONFIRM
http://www.iss.net/security_center/static/6847.php
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/3057
vdb-entryx_refsource_BID

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.