PT-2002-1600 · Unknown · Dynamic Guestbook

Publicado

2002-06-11

Atualizado

2008-09-05

CVE-2002-0550

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Dynamic Guestbook version 3.0

Description The issue allows remote attackers to execute arbitrary code via shell metacharacters in the gbdaten parameter.

Recommendations For Dynamic Guestbook version 3.0, avoid using the gbdaten parameter until the issue is resolved. Consider restricting access to the affected module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-0550

Produtos afetados

Dynamic Guestbook

PT-2002-1600 · Unknown · Dynamic Guestbook

CVE-2002-0550

Identificadores relacionados

Produtos afetados

Referências · 4