Vulnerabilities > CVE-1999-1063 - Remote File Execution vulnerability in CDomainFree
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the fqdn parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |
Exploit-Db
description | CdomainFree 2.4 Remote File Execution Vulnerability. CVE-1999-1063. Remote exploits for multiple platform |
id | EDB-ID:19242 |
last seen | 2016-02-02 |
modified | 1999-06-01 |
published | 1999-06-01 |
reporter | Salvatore Sanfilippo -antirez- |
source | https://www.exploit-db.com/download/19242/ |
title | CdomainFree <= 2.4 - Remote File Execution Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | WHOIS_RAW.NASL |
description | The remote host appears to be using the CdomainFree |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10306 |
published | 1999-06-22 |
reporter | This script is Copyright (C) 1999-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10306 |
title | CDomain whois_raw.cgi fqdn Parameter Arbitrary Command Execution |
code |
|