Command Shell in Externally Accessible Directory

Incomplete Variant

Structure: Simple

Description

A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.

Common Consequences 1

Scope: ConfidentialityIntegrityAvailability

Impact: Execute Unauthorized Code or Commands

Potential Mitigations 1

Phase: InstallationSystem Configuration

Remove any Shells accessible under the web root folder and children directories.

Modes of Introduction

Implementation

Operation

Related Attack Patterns

650
Trusting HTTP Permission Methods on the Server Side

Related Weaknesses

ChildOf:

Files or Directories Accessible to External Parties (CWE-552)