CVE-2000-0639

Name of the Vulnerable Software and Affected Versions Big Brother versions 1.4h2 and earlier

Description The default configuration does not include proper access restrictions, allowing remote attackers to execute arbitrary commands by uploading a file that will be executed as a CGI script by the web server.

Recommendations For Big Brother versions 1.4h2 and earlier, consider configuring proper access restrictions to prevent remote attackers from uploading executable files. As a temporary workaround, restrict access to the bbd upload functionality until a proper configuration can be implemented.