CVE-2005-0116

N/A Unknown

Published: January 18, 2005 Modified: April 16, 2026

Description

AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://awstats.sourceforge.net/docs/awstats_changelog.txt

Source: cve@mitre.org

Patch Vendor Advisory

http://packetstormsecurity.org/0501-exploits/AWStatsVulnAnalysis.pdf

Source: cve@mitre.org

http://secunia.com/advisories/13893/

Source: cve@mitre.org

Patch Vendor Advisory

http://www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://www.kb.cert.org/vuls/id/272296

Source: cve@mitre.org

Patch Third Party Advisory US Government Resource

http://www.osvdb.org/13002

Source: cve@mitre.org

http://www.securityfocus.com/bid/12298

Source: cve@mitre.org

http://awstats.sourceforge.net/docs/awstats_changelog.txt