Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0287

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2000-0287
Last Modified 10 Sep 2008 03:04:00
Published 12 Apr 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0287

Summary

The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter.

Vulnerable Systems

Application

  • Cnc Technology Bizdb 1.0


References

BID - 1104

BUGTRAQ - 20000412 BizDB Search Script Enables Shell Command Execution at the Server


Last Updated: 27 May 2016 10:35:38