Description
A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.
Potential Impact
Confidentiality, Integrity, Availability
Execute Unauthorized Code or Commands
Mitigations & Prevention
Remove any Shells accessible under the web root folder and children directories.
Related Weaknesses
Frequently Asked Questions
What is CWE-553?
CWE-553 (Command Shell in Externally Accessible Directory) is a software weakness identified by MITRE's Common Weakness Enumeration. It is classified as a Variant-level weakness. A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.
How can CWE-553 be exploited?
Attackers can exploit CWE-553 (Command Shell in Externally Accessible Directory) to execute unauthorized code or commands. This weakness is typically introduced during the Implementation, Operation phase of software development.
How do I prevent CWE-553?
Key mitigations include: Remove any Shells accessible under the web root folder and children directories.
What is the severity of CWE-553?
CWE-553 is classified as a Variant-level weakness (Low-Medium abstraction). Its actual severity depends on the specific context and how the weakness manifests in your application.