PT-2017-6490 · Fli4L · Fli4L

Felix Eckhofer

Published

2017-08-28

Updated

2017-09-06

CVE-2015-1443

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions fli4l versions prior to 3.10.1 fli4l version 4.0 before 2015-01-30

Description The issue allows remote attackers to execute arbitrary code via the httpd package.

Recommendations For fli4l versions prior to 3.10.1, update to version 3.10.1 or later. For fli4l version 4.0 before 2015-01-30, update to a version released on or after 2015-01-30.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2015-1443

Affected Products

Fli4L

PT-2017-6490 · Fli4L · Fli4L

CVE-2015-1443

Weakness Enumeration

Related Identifiers

Affected Products

References · 4