Описание
Argument injection vulnerability in the ping function in Ping.php in the Net_Ping package before 2.4.5 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: this has also been reported as a shell metacharacter problem.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.4.2-1.1 |
| hardy | released | 2.4.2-1+etch1build0.8.04.1 |
| intrepid | released | 2.4.2-1+etch1build0.8.10.1 |
| jaunty | released | 2.4.2-1+etch1build0.9.04.1 |
| karmic | released | 2.4.2-1+etch1build0.9.10.1 |
| upstream | needs-triage |
Показывать по
10 Critical
CVSS2
Связанные уязвимости
Argument injection vulnerability in the ping function in Ping.php in the Net_Ping package before 2.4.5 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: this has also been reported as a shell metacharacter problem.
Argument injection vulnerability in the ping function in Ping.php in t ...
Argument injection vulnerability in the ping function in Ping.php in the Net_Ping package before 2.4.5 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: this has also been reported as a shell metacharacter problem.
10 Critical
CVSS2