CVE-1999-1180

Sažetak

O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.

Reference

http://oliver.efri.hr/~crv/security/bugs/NT/buffer.html
http://www.tryc.on.ca/archives/bugtraq/1999_1/0612.html

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

10-09-2008 - 19:01

Objavljeno

16-02-1999 - 05:00