Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois" parameter.Referenceshttp://www.securityfocus.com/bid/1883https://exchange.xforce.ibmcloud.com/vulnerabilities/5438http://archives.neohapsis.com/archives/bugtraq/2000-10/0420.htmlhttp://archives.neohapsis.com/archives/bugtraq/2000-10/0419.htmlhttp://www.kootenayweb.bc.ca/scripts/whois.txt
