HighCheck or Attack Name: AnyForm
The AnyForm cgi-bin program contains a vulnerability that allows a remote attacker to execute programs on a web server. This is present in AnyForm2, version 2 of the AnyForm program by John Roberts.
Disable access or execute permission to the AnyForm2 script and upgrade to AnyForm version 3 or greater.
University of Kentucky AnyForm Web Site, AnyForm - HTML Form Processor version 3.2, http://www.uky.edu/AnyForm
WWW-Security Mailing List, SECURITY HOLE: "AnyForm" CGI, http://www-ns.rutgers.edu/www-security/archives/0802.html
