Remote Code Execution via Format String Vulnerability in SCO Help HTTP Server

Remote Code Execution via Format String Vulnerability in SCO Help HTTP Server

CVE-2000-1014 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter.

Learn more about our Cis Benchmark Audit For Server Software.