vendor:
WebAPP CGI
by:
Alpha_Programmer
7.5
CVSS
HIGH
Command Injection
CWE
Product Name: WebAPP CGI
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
Remote Command Executing Exploit for WebAPP CGI
This exploit opens a backdoor on port 4444 with nobody access. It targets the apage.cgi script in WebAPP CGI that is vulnerable to command injection. The exploit downloads a malicious file from a remote server and executes it on the target system.
Mitigation:
Apply the necessary patches and updates to the WebAPP CGI script to fix the command injection vulnerability. Regularly update and patch all software components to prevent such vulnerabilities.