exploitDog

CVE-2006-0845

Опубликовано: 22 фев. 2006

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.

Ссылки

http://secunia.com/advisories/18923
Vendor Advisory
http://securityreason.com/securityalert/522
http://www.evuln.com/vulns/82/summary.html
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24757
http://secunia.com/advisories/18923
Vendor Advisory
http://securityreason.com/securityalert/522
http://www.evuln.com/vulns/82/summary.html
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24757

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:leif_m._wright:web_blog:3.5:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01196

Низкий

6.5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fhj8-953f-fx7h

github

почти 4 года назад

Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.

EPSS

Процентиль: 79%

0.01196

Низкий

6.5 Medium

CVSS2

Дефекты

NVD-CWE-Other