Описание
The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens Computers ServerView before 4.50.09 allows remote attackers to execute arbitrary commands via shell metacharacters in the Servername subparameter of the ParameterList parameter.
The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens Computers ServerView before 4.50.09 allows remote attackers to execute arbitrary commands via shell metacharacters in the Servername subparameter of the ParameterList parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35257
- http://osvdb.org/37835
- http://secunia.com/advisories/25944
- http://securityreason.com/securityalert/2858
- http://www.redteam-pentesting.de/advisories/rt-sa-2007-002.php
- http://www.securityfocus.com/archive/1/472800/100/0/threaded
- http://www.securityfocus.com/bid/24762
- http://www.vupen.com/english/advisories/2007/2441
EPSS
Процентиль: 95%
0.17064
Средний
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens Computers ServerView before 4.50.09 allows remote attackers to execute arbitrary commands via shell metacharacters in the Servername subparameter of the ParameterList parameter.
EPSS
Процентиль: 95%
0.17064
Средний