Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0614

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0614
Last Modified 05 Sep 2008 04:24:32
Published 22 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0614

Summary

Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL.

Vulnerable Systems

Application

  • Carello E-commerce 1.2.1


References

XF - carello-url-code-execution(6532)

BUGTRAQ - 20010514 def-2001-25: Carello E-Commerce Arbitrary Command Execution


Last Updated: 27 May 2016 10:36:20