Описание
LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to insufficient input sanitization of the web GUI parameters.
LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to insufficient input sanitization of the web GUI parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-4981
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94784
- http://ocert.org/advisories/ocert-2014-005.html
- http://packetstormsecurity.com/files/127593/LPAR2RRD-3.5-4.53-Command-Injection.html
- http://www.lpar2rrd.com/note453-01.htm
- http://www.openwall.com/lists/oss-security/2014/07/23/6
- http://www.securityfocus.com/bid/68844
Связанные уязвимости
CVSS3: 9.8
nvd
почти 6 лет назад
LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to insufficient input sanitization of the web GUI parameters.