Command Shell in Externally Accessible Directory |
Weakness ID: 553 (Weakness Variant) | Status: Incomplete |
Description Summary
Verify the deployment of the application. Check that no directory listing is exposing the file system. |
Perform input data validation before doing path resolution. |
Remove any Shells accessible under the web root folder and children directories. |
Nature | Type | ID | Name | View(s) this relationship pertains to![]() |
---|---|---|---|---|
ChildOf | ![]() | 552 | Files or Directories Accessible to External Parties | Development Concepts (primary)699 Research Concepts (primary)1000 |
Submissions | ||||
---|---|---|---|---|
Submission Date | Submitter | Organization | Source | |
Anonymous Tool Vendor (under NDA) | Externally Mined | |||
Modifications | ||||
Modification Date | Modifier | Organization | Source | |
2008-07-01 | Eric Dalci | Cigital | External | |
updated Potential Mitigations, Time of Introduction | ||||
2008-09-08 | CWE Content Team | MITRE | Internal | |
updated Relationships, Taxonomy Mappings | ||||
Previous Entry Names | ||||
Change Date | Previous Entry Name | |||
2008-04-11 | Possible Command Shell (csh) | |||
Security-Database help your corporation foresee and avoid any security risks that may impact your IT infrastructure and business applications.