Описание
The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and earlier allows remote attackers to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are interpreted as executable macro symbols.
Ссылки
- Exploit
- Exploit
- Vendor Advisory
- Exploit
- Exploit
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.3c (включая)
cpe:2.3:a:rejetto:http_file_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.0806
Низкий
7.5 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
больше 3 лет назад
The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and earlier allows remote attackers to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are interpreted as executable macro symbols.
EPSS
Процентиль: 92%
0.0806
Низкий
7.5 High
CVSS2
Дефекты
CWE-94