Back to CVE Browser

CVE-2001-0023

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0190%

EPSS Percentile28.21th

PublishedFeb 12, 2001

Last ModifiedApr 16, 2026

Vulnerability Description

everythingform.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.

Affected Platforms (CPE)

📦

Leif M. Wright

Everythingform.cgi

= 2.0

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2000-12/0137.html

🔗 http://www.securityfocus.com/bid/2101

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/5736

🔗 http://archives.neohapsis.com/archives/bugtraq/2000-12/0137.html

🔗 http://www.securityfocus.com/bid/2101

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/5736

Related Vulnerabilities

CVE-2001-000810.0

Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures.

CVE-2001-001010.0

Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.

CVE-2001-002210.0

simplestguest.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the...

CVE-2001-001110.0

Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges.

CVE-2001-0023 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space