CVE-2006-2237

EXPLOITED

AWStats 6.4-6.5 - Remote Code Execution via Migrate Parameter

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2006-2237 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 4 public exploits from researchers including Metasploit, redsand, patrick, including a Metasploit module exploits/unix/webapp/awstats_migrate_exec.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in AWStats (CVE-2006-2237) by abusing the 'migrate' parameter in the CGI script. It allows remote command execution when 'AllowToUpdateStatsFromBrowser' is enabled.

Description

The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubywebappscgi
https://www.exploit-db.com/exploits/16886

This Metasploit module exploits a command injection vulnerability in AWStats (CVE-2006-2237) by abusing the 'migrate' parameter in the CGI script. It allows remote command execution when 'AllowToUpdateStatsFromBrowser' is enabled.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AWStats v6.4 and v6.5
No auth needed
Prerequisites: AWStats with 'AllowToUpdateStatsFromBrowser' enabled · Access to the AWStats CGI script
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by redsand · pythonwebappscgi
https://www.exploit-db.com/exploits/1755

This exploit targets a command injection vulnerability in AWStats (CVE-2006-2237) by injecting a Perl reverse shell payload via the 'migrate' parameter. It supports HTTP authentication and connects back to a specified host and port.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: AWStats 6.5 and prior
Auth required
Prerequisites: Target AWStats instance with vulnerable 'migrate' parameter · Network connectivity to the target · Optional HTTP authentication credentials
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by patrick · rubywebappscgi
https://www.exploit-db.com/exploits/9909

This Metasploit module exploits a command injection vulnerability in AWStats via the 'migrate' parameter when 'AllowToUpdateStatsFromBrowser' is enabled. It sends a crafted GET request to execute arbitrary commands on the target system.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AWStats v6.4 and v6.5
No auth needed
Prerequisites: AWStats with 'AllowToUpdateStatsFromBrowser' enabled · Access to the AWStats CGI script
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by aushack · rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/awstats_migrate_exec.rb

This Metasploit module exploits a command injection vulnerability in AWStats (CVE-2006-2237) via the 'migrate' parameter when 'AllowToUpdateStatsFromBrowser' is enabled. It sends a crafted HTTP request to execute arbitrary commands on the target system.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AWStats v6.4 and v6.5
No auth needed
Prerequisites: AWStats with 'AllowToUpdateStatsFromBrowser' enabled · Access to the AWStats CGI script
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (16)

Core 16
Core References
Various Sources x_refsource_misc
http://www.osreviews.net/reviews/comm/awstats
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20710
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20186
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2006/dsa-1058
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20496
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/26287
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1678
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20170
Patch vdb-entry x_refsource_osvdb
http://www.osvdb.org/25284
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/285-1/
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19969
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200606-06.xml
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2006_33_awstats.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17844

Scores

EPSS 0.9060
EPSS Percentile 99.6%

Details

VulnCheck KEV 2020-12-01
Status published
Products (2)
awstats/awstats 6.4
awstats/awstats 6.5
Published May 08, 2006
Tracked Since Feb 18, 2026