Code: p648 Severity: Warning
Description: Attempted /usr/bin/perl access via web Impact: Attempt to execute a perl script on a host. Corrective: Webservers should not be allowed to view or execute files and binaries outside of it's designated web root or cgi-bin. perl may also be requested on a command line should the attacker gain access to the machine. Whenever possible, all perl scripts on the host should be written using the restriceted access mode. This forces perl to execute the scripts in a "sandbox" which will disallow unsafe operations in the code.
|
