CVE-1999-0287

webcom cgi_guestbook - Unauthenticated Remote Command Execution

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0287.

AI-analyzed exploit summary The writeup describes a directory traversal vulnerability in the freeware guestbook package, allowing arbitrary file read via the 'template' parameter in rguest.exe or wguest.exe. The example demonstrates retrieving boot.ini by manipulating the parameter.

Description

Vulnerability in the Wguest CGI program.

Exploits (2)

exploitdb WRITEUP
remotecgi
https://www.exploit-db.com/exploits/20446

The writeup describes a directory traversal vulnerability in the freeware guestbook package, allowing arbitrary file read via the 'template' parameter in rguest.exe or wguest.exe. The example demonstrates retrieving boot.ini by manipulating the parameter.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: freeware guestbook package (versions undetermined)
No auth needed
Prerequisites: Access to the CGI scripts (rguest.exe or wguest.exe)
devstral-2 · analyzed Feb 19, 2026 Full analysis →
exploitdb WORKING POC
remotecgi
https://www.exploit-db.com/exploits/20447

The exploit demonstrates an arbitrary file read vulnerability in the freeware guestbook package by manipulating the 'template' parameter in rguest.exe or wguest.exe to retrieve sensitive files from the server. The example provided shows how to fetch the $winnt$.inf file by specifying its path.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: freeware guestbook package (versions undetermined)
No auth needed
Prerequisites: Access to the CGI script (rguest.exe or wguest.exe) on the target server
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

EPSS 0.0617
EPSS Percentile 92.6%

Details

Status published
Products (1)
webcom/cgi_guestbook
Published Apr 09, 1999
Tracked Since Feb 18, 2026