PT-1997-1061 · Ncsa · Ncsa Web Server

Publicado

1997-07-15

Atualizado

2018-05-03

CVE-1999-0146

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions NCSA web server (affected versions not specified)

Description The issue allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string. This can be demonstrated by reading the password file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-1999-0146

Produtos afetados

Ncsa Web Server

PT-1997-1061 · Ncsa · Ncsa Web Server

CVE-1999-0146

Identificadores relacionados

Produtos afetados

Referências · 4