suid@suid.kg - mini advisory - Cliff's Form Mailer and Message board CGIs Software: form.cgi and message.cgi URL: http://www.shavenferret.com/scripts/form/ URL: http://www.shavenferret.com/scripts/message/ Version: Version 1.0 Platforms: Unix Type: Input validation problem Summary: Anyone can execute any command on the remote system with the priveleges of the web server. Vulnerability: The perl code does no input validation and performs an open() on a user supplied input. Exploits: (1) form.cgi Build a HTML form resembling: (2) message.cgi Of course you could simply send this in a POST request directly to the web server. Whatever. http://www.suid.edu/advisories/006.txt EOF