Vulnerabilities > CVE-2000-0941 - Unspecified vulnerability in Kootenay web INC Kootenay web INC Whois 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois" parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Kootenay Web Inc whois 1.0 Remote Command Execution Vulnerability. CVE-2000-0941. Remote exploit for cgi platform |
id | EDB-ID:20370 |
last seen | 2016-02-02 |
modified | 2000-10-29 |
published | 2000-10-29 |
reporter | Mark Stratman |
source | https://www.exploit-db.com/download/20370/ |
title | Kootenay Web Inc whois 1.0 - Remote Command Execution Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | KW_WHOIS.NASL |
description | The version of the KW whois CGI script installed on the remote web server fails to filter input to the |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10541 |
published | 2002-11-29 |
reporter | This script is Copyright (C) 2000-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10541 |
title | KW Whois CGI whois Parameter Arbitrary Command Execution |
code |
|