![]() |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
Test ID: | 10041 |
Category: | Web application abuses |
Title: | Cobalt RaQ2 cgiwrap |
Summary: | 'cgiwrap' is installed. If you are running an unpatched Cobalt RaQ,; the version of cgiwrap distributed with that system has a known security flaw that lets anyone execute; arbitrary commands with the privileges of the http daemon (root or nobody).;; This flaw exists only on the Cobalt modified cgiwrap. Standard builds of cgiwrap are not affected. |
Description: | Summary: 'cgiwrap' is installed. If you are running an unpatched Cobalt RaQ, the version of cgiwrap distributed with that system has a known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon (root or nobody). This flaw exists only on the Cobalt modified cgiwrap. Standard builds of cgiwrap are not affected. Solution: Upgrade your Cobalt RaQ to apply fix. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-1999-1530 BugTraq ID: 777 http://www.securityfocus.com/bid/777 Bugtraq: 19991108 Security flaw in Cobalt RaQ2 cgiwrap (Google Search) http://marc.info/?l=bugtraq&m=94209954200450&w=2 Bugtraq: 19991109 [Cobalt] Security Advisory - cgiwrap (Google Search) http://marc.info/?l=bugtraq&m=94225629200045&w=2 http://www.osvdb.org/35 http://www.iss.net/security_center/static/7764.php Common Vulnerability Exposure (CVE) ID: CVE-2000-0431 BugTraq ID: 1238 http://www.securityfocus.com/bid/1238 Bugtraq: 20000522 Problem with FrontPage on Cobalt RaQ2/RaQ3 (Google Search) http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000523100045.B11049@HiWAAY.net Bugtraq: 20000525 Cobalt Networks - Security Advisory - Frontpage (Google Search) http://www.osvdb.org/1346 XForce ISS Database: cobalt-cgiwrap-bypass |
Copyright | Copyright (C) 1999 Mathieu Perrin |
This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |