CVE-2008-5810

Name of the Vulnerable Software and Affected Versions Fujitsu-Siemens WebTransactions versions 7.0 through 7.1

Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters in input sent through HTTP, which is improperly used during temporary session data cleanup. This could be related to directory names, template names, and session IDs.

Recommendations For versions 7.0 and 7.1, consider restricting access to the temporary session data cleanup functionality until a fix is available. As a temporary workaround, avoid using shell metacharacters in input that is sent through HTTP to minimize the risk of exploitation.