Arbitrary Code Execution in Viralator 0.9pre1 and Earlier via Insecure wget Call

Arbitrary Code Execution in Viralator 0.9pre1 and Earlier via Insecure wget Call

CVE-2001-0849 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

viralator CGI script in Viralator 0.9pre1 and earlier allows remote attackers to execute arbitrary code via a URL for a file being downloaded, which is insecurely passed to a call to wget.

Learn more about our Web Application Penetration Testing UK.