AWStats (Advanced Web Stats) is an open source log stats generation tool. It can parse web, ftp, mail, proxy, and a number of other log formats and create very useful reports. There has been a remote exploit made public in his tool that allows a remote attacker to run code on an affected server. Normally we wouldn't report a vulnerability in a tool like this, but this tool is in wide enough use that we feel it's useful. This is a tool that would often be deployed and then forgotten about. Please take a moment and make sure that you don't have a vulnerable version of this script running. There is a patched download available at the awstats website: http://awstats.sourceforge.net/ There has been exploit code released here: http://www.k-otik.com/exploits/20050124.awexpl.c.php http://www.k-otik.com/exploits/20050124.GHCaws.pl.php With the widespread use of this tool it's likely that an automated worm may be written from these exploit scripts. We recommend you upgrade quickly. An attacker would be able to find a large number of vulnerable servers via Google searches, etc. The upgrade is very quick and easy. |
It looks like you're new here. If you want to get involved, click one of these buttons!