PT-2008-2910 · Versant · Versant Object Database

Luigi Auriemma

Publicado

2008-03-13

Atualizado

2018-10-11

CVE-2008-1319

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Versant Object Database versions 7.0.1.3 and earlier

Description The issue is related to an untrusted search path and argument injection in the VersantD service. This allows remote attackers to execute arbitrary commands by sending a request to TCP port 5019 with a modified VERSANT ROOT field.

Recommendations For Versant Object Database versions 7.0.1.3 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2008-1319

Produtos afetados

Versant Object Database

PT-2008-2910 · Versant · Versant Object Database

CVE-2008-1319

Identificadores relacionados

Produtos afetados

Referências · 10