CVE-2001-0025

ad.cgi - Remote Command Execution via File Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0025. PoCs published by rpc.

AI-analyzed exploit summary This exploit leverages insufficient input validation in ad.cgi to execute arbitrary commands via the FORM method, allowing remote command execution with HTTPD process privileges. The PoC demonstrates command injection by passing a malicious path to the 'file' parameter.

Description

ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rpc · htmlremotecgi

https://www.exploit-db.com/exploits/20504

View Code ZIP pw:eip

This exploit leverages insufficient input validation in ad.cgi to execute arbitrary commands via the FORM method, allowing remote command execution with HTTPD process privileges. The PoC demonstrates command injection by passing a malicious path to the 'file' parameter.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: ad.cgi (version not specified)

No auth needed

Prerequisites: ad.cgi script accessible via HTTP POST requests

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1202 - Indirect Command Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-12/0143.html

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2103

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5741

Scores

EPSS 0.1227

EPSS Percentile 95.7%

Details

Status published

Products (1)

leif_m._wright/ad.cgi 1.0

Published Feb 12, 2001

Tracked Since Feb 18, 2026