Описание
Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option.
Ссылки
- ExploitPatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:whois:whois:4.5.7:*:*:*:*:*:*:*
cpe:2.3:a:whois:whois:4.6.6:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02855
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
почти 22 года назад
Buffer overflow in the whois client, which is not setuid but is someti ...
github
больше 3 лет назад
Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option.
EPSS
Процентиль: 86%
0.02855
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other