Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2651

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2651
Last Modified 05 Sep 2008 04:52:19
Published 23 Aug 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2651

Summary

gorum/prod.php in Zorum 3.5 allows remote attackers to execute arbitrary code via shell metacharacters in the argv parameter.

Vulnerable Systems

Application

  • Phpoutsourcing Zorum 3.5


References

SECTRACK - 1014725

MISC - http://rgod.altervista.org/zorum.html

XF - zorum-gorumprod-command-execution(21912)

BID - 14601

SECUNIA - 16504

BUGTRAQ - 20050818 Zorum 3.5 remote code execution poc exploit


Last Updated: 27 May 2016 10:40:36