CVE-2011-2148

Name of the Vulnerable Software and Affected Versions SmarterTools SmarterStats version 6.0

Description The issue allows remote attackers to execute arbitrary commands. This is related to an "OS command injection" issue, where attackers can exploit the vulnerability via specific vectors involving parameters such as STTTState cookie, ctl00$MPH$txtAdminNewPassword SettingText parameter, ctl00$MPH$txtSmarterLogDirectory parameter, ctl00$MPH$ucSiteSeoSearchEngineSettings$chklistEngines SettingCheckBox$14 parameter, ctl00$MPH$ucSiteSeoSettings$txtSeoMaxKeywords SettingText parameter, or ctl00 MPH grdLogLocations HiddenLSR parameter, by using a leading and trailing & (ampersand) character.

Recommendations For SmarterTools SmarterStats version 6.0, consider restricting access to the affected parameters until a patch is available. As a temporary workaround, avoid using the parameters ctl00$MPH$txtAdminNewPassword SettingText, ctl00$MPH$txtSmarterLogDirectory, ctl00$MPH$ucSiteSeoSearchEngineSettings$chklistEngines SettingCheckBox$14, ctl00$MPH$ucSiteSeoSettings$txtSeoMaxKeywords SettingText, and ctl00 MPH grdLogLocations HiddenLSR in the "Admin/frmSite.aspx" endpoint. Additionally, be cautious with the STTTState cookie to minimize the risk of exploitation.