exploitDog

CVE-2001-0901

Опубликовано: 19 нояб. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an attachment with a .shtml extension, which is archived on the server and can then be executed by requesting the URL for the attachment.

Ссылки

http://marc.info/?l=bugtraq&m=100626603407639&w=2
Third Party Advisory
http://www.hypermail.org/dist/hypermail-2.1.4.tar.gz
Broken Link
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7576
Third Party Advisory
VDB Entry
http://marc.info/?l=bugtraq&m=100626603407639&w=2
Third Party Advisory
http://www.hypermail.org/dist/hypermail-2.1.4.tar.gz
Broken Link
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7576
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hypermail_development:hypermail:*:*:*:*:*:*:*:*

EPSS

Процентиль: 80%

0.01484

Низкий

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-494h-476g-jp9j

github

больше 3 лет назад

Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an attachment with a .shtml extension, which is archived on the server and can then be executed by requesting the URL for the attachment.

EPSS

Процентиль: 80%

0.01484

Низкий

7.5 High

CVSS2

Дефекты

CWE-434