Preface: BNBSurvey survey.cgiLogo -Internet Security Systems

BNBSurvey survey.cgi
advICE :Intrusions : 2002591
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

Somebody has attempted to break in through a vulnerable CGI program

Details

The BNBSurvey CGI script contains a standard "shell metacharacters" vulnerability. This means that a hacker could carefully construct input in the FORM in order to cause the webserver to execute any command the hacker wanted. These can range from breaking into the server to defacing the webpage.

This event only triggers when both the survey.cgi program is accessed and when the input contains such metacharacters.

 more information
BugtraqID: 1817   BNB Survey.cgi Metacharacter Vulnerability
 
CVE-1999-0936   BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters.
 

 parametric information
URLThe suspicious URL.
accessedIndicates whether the URL was successfully accessed.
codeThe HTTP return code.
argThe argument to the GET command (if any).

 
Version appeared: 2.5
Privacy Policy |  Copyright Info