CVE-2000-0213
Sambar Server < 4.2 - Remote Command Execution via CGI Batch Files
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0213. PoCs published by Georich Chorbadzhiyski.
AI-analyzed exploit summary This exploit leverages default batch files in Sambar Server's cgi-bin directory to execute arbitrary commands with administrator privileges via command injection. The PoC demonstrates directory listing commands but can be extended to other system operations.
Description
The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters.
Exploits (1)
This exploit leverages default batch files in Sambar Server's cgi-bin directory to execute arbitrary commands with administrator privileges via command injection. The PoC demonstrates directory listing commands but can be extended to other system operations.