CVE-2011-4201

Name of the Vulnerable Software and Affected Versions Tadasoft Restorepoint version 3.2

Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the pid1 or pid2 parameter in a stop remote support action. This is related to the remote support.cgi component.

Recommendations For Tadasoft Restorepoint version 3.2, avoid using the pid1 and pid2 parameters in the stop remote support action until the issue is resolved. As a temporary workaround, consider restricting access to the remote support.cgi component to minimize the risk of exploitation.