Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6459

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-6459
Last Modified 14 Aug 2013 01:37:42
Published 19 Dec 2007 07:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6459

Summary

Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.

Vulnerable Systems

Application

  • Anon Proxy Server 0.100


References

BID - 26882

BUGTRAQ - 20071214 Anon Proxy Server - Remote Code Execution

MILW0RM - 4734

OSVDB - 43712

OSVDB - 43711

SREASON - 3463


Last Updated: 27 May 2016 10:46:30