CVE-2009-4273

Опубликовано: 18 дек. 2009

Источник: redhat

CVSS2: 7.9

EPSS Средний

Описание

stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-78

https://bugzilla.redhat.com/show_bug.cgi?id=550172systemtap: remote code execution via stap-server

EPSS

Процентиль: 95%

0.20175

Средний

7.9 High

CVSS2

Связанные уязвимости

CVE-2009-4273

ubuntu

больше 15 лет назад

stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.

CVE-2009-4273

nvd

больше 15 лет назад

stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.

CVE-2009-4273

debian

больше 15 лет назад

stap-server in SystemTap before 1.1 allows remote attackers to execute ...

GHSA-cf29-75j3-j238

github

около 3 лет назад

stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.

ELSA-2010-0124

oracle-oval

больше 15 лет назад

ELSA-2010-0124: systemtap security update (IMPORTANT)

EPSS

Процентиль: 95%

0.20175

Средний

7.9 High

CVSS2