Adam Caudill

Security Leader, Researcher, Developer, Writer, & Photographer

Still using AWStats?

This post was imported from an old blog archive, and predates the creation of AdamCaudill.com.

If you’re using AWStats v5.7 – 6.2, you’re life just got even worse than it was.

As you should know, those version are vulnerable to a now widely known exploit that gives an attacker your server, now here’s where it gets even worse: There’s a new exploit floating around that works on not one, but all three of the methods being used.

So if you’ve not updated, now would be a good time, if it’s not too late.

AWStats 6.x Multiple Remote Command Execution (Shell) Exploit

Adam Caudill

About Me

Security researcher, engineer and software developer with more than 20 years of experience.

Work: I primarily focus on application security, usable security, secure communications, and cryptography. I build and lead strong and dynamic teams, who cover all facets of security and privacy.

Writing: I write about my research, security in general, development and software design, and leadership through my blog, essays, and various publications. I also engage in some creating writing when I can.

Photography: I am a purist fine art photographer, working primarily in black & white, and focused on sharing new perspectives of the world. Limited edition prints of my work are available on my online gallery. I also have a background in photojournalism, and volunteer in this field when I can.

Contact