We have a company that does penetration tests on our network every so
often. The last test, they showed a PERL Script issues on ports 80,443,
and 2200. We do run Remote Manager and IManager on the netware 6.5 boxes.

The flaw they are reporting is "Perl interpreter at /welcome/perl. This
host is running the Perl interpreter as a CGI. This allows an attacker to
execute arbitrary code on the server. An attacker can use this to gain
control of this host"

Suggested solution was "Remove the Perl CGI from the cgi-bin directory.
Script interpreters should never be installed as CGI programs."

I do have the sys\apache2\cgi-bin\ samples removed. Where else should I
look and should I worry about this report?