Plugin ID | 304 |
Plugin name | FastCGI sample echo.exe cross site scripting |
Plugin filename | FastCGI sample echo.exe cross site scripting.plugin |
Plugin filesize | 2646 bytes |
Plugin family | CGI |
Plugin created name | Marc Ruef |
Plugin created email | marc.ruef at computec.ch |
Plugin created web | http://www.computec.ch |
Plugin created company | computec.ch |
Plugin created date | 2005/01/04 |
Plugin version | 1.0 |
Plugin protocol | tcp |
Plugin port | 80 |
Plugin procedure exploit | open|send GET /fcgi-bin/echo.exe?foo=<script>atk</script> HTTP/1.0\n\n|sleep|close|pattern_exists HTTP/#.# ### *<script>atk</script>* |
Plugin exploit accuracy | 98 |
Plugin comment | The NASL script is Copyright (C) 2002 Matt Moore |
Bug affected | FastCGI |
Bug vulnerability class | Cross Site Scripting |
Bug description | Two sample CGI's supplied with FastCGI are vulnerable to cross-site scripting attacks. FastCGI is an 'open extension to CGI that provides high performance without the limitations of server specific APIs', and is included in the default installation of the 'Unbreakable' Oracle9i Application Server. Various other web servers support the FastCGI extensions (Zeus, Pi3Web etc). Two sample CGI's are installed with FastCGI, (echo.exe and echo2.exe under Windows, echo and echo2 under Unix). Both of these CGI's output a list of environment variables and PATH information for various applications. They also display any parameters that were provided to them. Hence, a cross site scripting attack can be performed via a request. |
Bug solution | Always remove sample applications from production servers. |
Bug fixing time | Approx. 1 hour |
Bug exploit availability | Yes |
Bug remote | Yes |
Bug local | Yes |
Bug severity | High |
Bug popularity | 6 |
Bug simplicity | 8 |
Bug impact | 8 |
Bug risk | 7 |
Bug Nessus risk | High |
Bug check tools | Nessus can check this flaw with the plugin 10838 (FastCGI samples Cross Site Scripting). |
Source Nessus ID | 10838 |
Source Literature | Hacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427 |
Source Misc. | http://www.computec.ch |