Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » BBS Forum 1.0 cgi vulnerability

BBS Forum 1.0 cgi vulnerability

by Phiber on January 9th, 2001 Cgisecurity group has discovered a bug in bbs forum 1.0.Entering a specifically malformed url, attacker can execute commands with permissions of user nobody (or web server). Command execution is allowed and maybe shell spawning is possible. Cgisecurity didn't check for windows version of that forum so it is unknown if it works on a Windows platform. [Vendor Homepage] [Advisory]



Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »