Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0489

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0489
Last Modified 05 Sep 2008 04:28:09
Published 12 Aug 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0489

Summary

Linux Directory Penguin NsLookup CGI script (nslookup.pl) 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the (1) query or (2) type parameters.

Vulnerable Systems

Application

  • Linux Directory Penguin Nslookup 1.0


References

BID - 4353

XF - penguin-nslookup-command-execution(8601)

BUGTRAQ - 20020322 Re: PHP script: Penguin Traceroute, Remote Command Execution


Last Updated: 27 May 2016 10:36:56