WEB_CGI alibaba.pl arbitrary command execution attempt

 

Code: p824

Severity: Warning

 

Description: This event is generated when an attempt is made to exploit a known vulnerability in a CGI web application running on a server.

Impact: Information gathering and system integrity compromise. Possible unauthorized administrative access to the server or application. Possible execution of arbitrary code of the attackers choosing in some cases.

Corrective: Ensure the system is using an up to date version of the software and has had all vendor supplied patches applied.