Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-4367

Опубликовано: 02 дек. 2010
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5

Описание

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

РелизСтатусПримечание
dapper

not-affected

6.5-1ubuntu1.3
devel

not-affected

6.9.5~dfsg-4
hardy

not-affected

6.7.dfsg-1ubuntu0.1
karmic

not-affected

6.9~dfsg-1ubuntu3
lucid

not-affected

6.9~dfsg-1ubuntu3
maverick

not-affected

6.9.5~dfsg-3
upstream

released

7.0

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.07265
Низкий

7.5 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2010-4367

nvd
около 15 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

debian логотип

CVE-2010-4367

debian
около 15 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the ...

github логотип

GHSA-p75r-4c9j-53m6

github
больше 3 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

EPSS

Процентиль: 91%
0.07265
Низкий

7.5 High

CVSS2