HTTP_/usr/bin/gcc command attempt


Code: p635

Severity: Warning


Description: Attempted gcc command access via web

Impact: Attempt to compile a binary on a host.

Corrective: Webservers should not be allowed to view or execute files and binaries outside of it's designated web root or cgi-bin. This command may also be requested on a command line should the attacker gain access to the machine. Whenever possible, sensitive files and certain areas of the filesystem should have the system immutable flag set to prevent files from being added to the host. On BSD derived systems, setting the systems runtime securelevel also prevents the securelevel from being changed. (note: the securelevel can only be increased).