Description
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Cody T. - hhp · textremotecgi
https://www.exploit-db.com/exploits/20433
References (1)
Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0985
Scores
EPSS
0.0445
EPSS Percentile
89.2%
Details
Status
published
Products (1)
cc/cc_whois
1.0
Published
Nov 09, 1999
Tracked Since
Feb 18, 2026