You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2014/12/09 12:11:56 UTC

[Bug 57329] Bypass execute command line by Js Node

https://issues.apache.org/bugzilla/show_bug.cgi?id=57329

Eric Covener <co...@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
          Component|Other                       |mod_cgi
            Version|unspecified                 |2.4.10
           Assignee|notifications@ant.apache.or |bugs@httpd.apache.org
                   |g                           |
            Product|Ant                         |Apache httpd-2

--- Comment #2 from Eric Covener <co...@gmail.com> ---
Changing to product to httpd for posterity.  

There's no vulnerability described here, once you enable CGI and create a
script you can do whatever the system allows you.  

* Bugzilla is for reporting defects, not discussion or blogging your personal
journey through learning CGI.
* Genuine security issues should be reported directly to security@apache.org

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org