PT-2001-2261 · Roxen · Roxen

Published

2001-08-02

Updated

2017-10-10

CVE-2001-1118

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Roxen versions 2.0 through 2.0.91 Roxen versions 2.1 through 2.1.263

Description A module in Roxen does not properly decode UTF-8, Mac and ISO-2202 encoded URLs, which could allow a remote attacker to execute arbitrary commands or view arbitrary files via an encoded URL.

Recommendations For Roxen versions 2.0 through 2.0.91, update to version 2.0.92 or later. For Roxen versions 2.1 through 2.1.263, update to version 2.1.264 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1118

Affected Products

Roxen

PT-2001-2261 · Roxen · Roxen

CVE-2001-1118

Related Identifiers

Affected Products

References · 7