CVE-2005-0438

AWStats 6.3 and 6.4 - Information Disclosure via Debug Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0438. PoCs published by omin0us.

AI-analyzed exploit summary This exploit targets CVE-2005-0438 in AWStats versions 5.7 to 6.2, allowing remote command execution via three different methods (configdir, update, and pluginmode). It establishes a remote shell by sending crafted HTTP requests and parsing the output.

Description

awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to obtain sensitive information by setting the debug parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by omin0us · cwebappscgi

https://www.exploit-db.com/exploits/853

View Code ZIP pw:eip

This exploit targets CVE-2005-0438 in AWStats versions 5.7 to 6.2, allowing remote command execution via three different methods (configdir, update, and pluginmode). It establishes a remote shell by sending crafted HTTP requests and parsing the output.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AWStats 5.7 - 6.2

No auth needed

Prerequisites: Network access to the target AWStats instance · AWStats CGI script accessible via HTTP

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/14299

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/19477

Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/390368

Scores

EPSS 0.0381

EPSS Percentile 88.7%

Details

Status published

Products (2)

awstats/awstats 6.3

awstats/awstats 6.4

Published May 02, 2005

Tracked Since Feb 18, 2026