CVE-2000-0670
CVSWeb 1.80 - Authenticated Remote Command Execution via Shell Metacharacters
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0670. PoCs published by Joey Hess.
AI-analyzed exploit summary CVE-2000-0670 exploits an insecure Perl `open` call in Cvsweb 1.80, allowing command injection via a maliciously crafted filename. The PoC demonstrates arbitrary command execution by embedding shellcode in a filename, which is executed when the file is viewed in a directory listing.
Description
The cvsweb CGI script in CVSWeb 1.80 allows remote attackers with write access to a CVS repository to execute arbitrary commands via shell metacharacters.
Exploits (1)
CVE-2000-0670 exploits an insecure Perl `open` call in Cvsweb 1.80, allowing command injection via a maliciously crafted filename. The PoC demonstrates arbitrary command execution by embedding shellcode in a filename, which is executed when the file is viewed in a directory listing.