Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0461

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0461
Last Modified 05 Sep 2008 04:24:10
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0461

Summary

template.cgi in Free On-Line Dictionary of Computing (FOLDOC) allows remote attackers to read files and execute commands via shell metacharacters in the argument to template.cgi.

Vulnerable Systems

Application

  • Denis Howe Foldoc


References

XF - foldoc-cgi-execute-commands

BUGTRAQ - 20010309 Cgisecurity.com advisory #4 The Free On-line Dictionary of Computing

CONFIRM - http://wombat.doc.ic.ac.uk/foldoc/index.html

OSVDB - 5591


Last Updated: 27 May 2016 10:36:16