awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to obtain sensitive information by setting the debug parameter.

Several input validation errors exist in AWStats that allow a remote unauthenticated attacker to execute arbitrary commands with the priviliges of the web server. These programming errors involve CGI parameters including loadplugin, logfile, pluginmode, update, and possibly others.

Additionally, the debug and other CGI parameters may be used to cause AWStats to disclose AWStats and system configuration information.

In addition to CAN-2005-0116 more vulnerabilities have been found in awstats, a powerful and featureful web server log analyzer with a CGI frontend. Missing input sanitising can cause arbitrary commands to be executed.

The remote host is running AWStats, a CGI log analyzer.  There are various content-parsing flaws in the remote version of this software that would allow an attacker to execute code on the remote host.  An attacker exploiting this flaw would only need to be able to generate HTTP requests to the awstats.pl CGI script.  A successful attack would allow the attacker to run system commands with the privileges of the CGI script.

The remote host is running AWStats, a free logfile analysis tool for analyzing ftp, mail, web, ...  traffic.

The remote version of this software is prone to a command execution flaw as well as an information disclosure vulnerability.  An attacker may exploit this feature to obtain more information about the setup of the remote host or to execute arbitrary commands with the privileges of the web server.

ID	Name	Product	Family	Severity
19185	FreeBSD : awstats -- arbitrary command execution (fdad8a87-7f94-11d9-a9e7-0001020eed82)	Nessus	FreeBSD Local Security Checks	high
16464	Debian DSA-682-1 : awstats - missing input sanitizing	Nessus	Debian Local Security Checks	high
2613	AWStats < 6.5 Perl Content-Parsing Code Execution	Nessus Network Monitor	CGI	medium
16456	AWStats Multiple Remote Vulnerabilities (Cmd Exec, Traversal, ID)	Nessus	CGI abuses	high

Detections

Analytics

CVE-2005-0438

high

Tenable Plugins

high

high

medium

high