1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
It's time to find out who is who in the community! New attachments and other rules

Upgrade Awstats ?

Discussion in 'Plesk for Windows - 8.x and Older' started by globalmcs, Feb 15, 2005.

  1. globalmcs

    globalmcs Regular Pleskian

    25
    57%
    Joined:
    Nov 23, 2004
    Messages:
    106
    Likes Received:
    0
    Is there a way to upgrade Awstats?

    AWStats Command Execution and Information Disclosure Vulnerabilities

    http://www.k-otik.com/english/advisories/2005/0164

    * Technical Description *
    Several vulnerabilities were identified in AWStats, which could be exploited by attackers to execute arbitrary commands. The first flaw resides in the "awstats.pl" script when handling the "loadplugin" and "pluginmode" parameters, which may be exploited to execute arbitrary commands with the privileges of the Web server. The second vulnerability resides in the "debug" paremeter, and may be exploited by remote attackers to gain access to sensitive data.

    * Affected Products *
    AWStats version 6.3 and earlier
     
    globalmcs, Feb 15, 2005
    #1
Loading...