CVE-2010-4367

AWStats < 7.0 - Remote Code Execution via Crafted Configuration File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4367. PoCs published by StenoPlasma.

AI-analyzed exploit summary This exploit leverages a command execution vulnerability in AWStats when used with Apache Tomcat on Windows. It allows arbitrary shell command execution via crafted URL parameters that manipulate the 'configdir' to point to a remote SMB share.

Description

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

Exploits (1)

exploitdb WORKING POC VERIFIED
by StenoPlasma · textwebappscgi
https://www.exploit-db.com/exploits/35035

This exploit leverages a command execution vulnerability in AWStats when used with Apache Tomcat on Windows. It allows arbitrary shell command execution via crafted URL parameters that manipulate the 'configdir' to point to a remote SMB share.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AWStats 6.95 and prior versions
No auth needed
Prerequisites: AWStats installed with Apache Tomcat on Windows · Network access to the target server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:033

Scores

EPSS 0.2767
EPSS Percentile 97.9%

Details

CWE
CWE-94
Status published
Products (33)
awstats/awstats 1.0
awstats/awstats 2.1.
awstats/awstats 2.2.3
awstats/awstats 2.2.4
awstats/awstats 3.0
awstats/awstats 3.1
awstats/awstats 3.2
awstats/awstats 4.0
awstats/awstats 4.1
awstats/awstats 5.0
... and 23 more
Published Dec 02, 2010
Tracked Since Feb 18, 2026