Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0635

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0635
Last Modified 05 Sep 2008 04:21:30
Published 10 Jul 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0635

Summary

The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.

Vulnerable Systems

Application

  • Akopia Minivend 3.0

  • Akopia Minivend 4.0

  • Akopia Minivend 4.0.4


References

XF - minivend-viewpage-sample

BID - 1449

CONFIRM - http://www.zdnet.com/zdnn/stories/news/0,4586,2600258,00.html

BUGTRAQ - 20000711 Akopia MiniVend Piped Command Execution Vulnerability


Last Updated: 27 May 2016 10:35:48