CVE-1999-1053

Name of the Vulnerable Software and Affected Versions guestbook.pl (affected versions not specified) Apache versions 1.3.9 and possibly other versions

Description The issue allows remote attackers to execute arbitrary commands due to the incomplete removal of user-inserted SSI commands by guestbook.pl. This is possible because Apache allows other closing sequences besides "-->".

Recommendations For Apache version 1.3.9, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, consider restricting access to guestbook.pl until a patch is available. Avoid using SSI commands in guestbook.pl until the issue is resolved.