The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter. CVE Link CVE-2006-2237 Exploit Platform Mac OS X Linux Exploit Type Exploits Remote Product Name Impact