PT-2002-2284 · Sun · Sun Cobalt Raq 4

Published

2002-12-23

Updated

2017-10-10

CVE-2002-1361

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed

Description: The issue allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter. This is related to the overflow.cgi CGI script.

Recommendations: For Sun Cobalt RaQ 4 with the SHP installed, consider restricting access to the overflow.cgi CGI script until a patch is available. As a temporary workaround, avoid using shell metacharacters in the email parameter to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1361

Affected Products

Sun Cobalt Raq 4

PT-2002-2284 · Sun · Sun Cobalt Raq 4

CVE-2002-1361

Related Identifiers

Affected Products

References · 9