exploitDog

GHSA-x42x-4h68-vrr4

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager (ZRM) for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQL_BINPATH variable.

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager (ZRM) for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQL_BINPATH variable.

Ссылки

EPSS

Процентиль: 90%

0.05789

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2009-3102

nvd

больше 16 лет назад

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager (ZRM) for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQL_BINPATH variable.

EPSS

Процентиль: 90%

0.05789

Низкий

CVE ID

Дефекты

CWE-20