Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0892

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-0892
Last Modified 07 Mar 2011 10:05:37
Published 16 Apr 2008 02:05:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-0892

Summary

The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.

Vulnerable Systems

Operating System

  • Red Hat Directory Server 8

  • Redhat Directory Server 7.1

  • Redhat Fedora Directory Server


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=437301

XF - rhds-replmonitor-command-execution(41840)

VUPEN - ADV-2008-1449

SECTRACK - 1019856

BID - 28802

REDHAT - RHSA-2008:0201

REDHAT - RHSA-2008:0199

SECUNIA - 29761

HP - HPSBUX02324

FEDORA - FEDORA-2008-3220

FEDORA - FEDORA-2008-3214

SECUNIA - 30114

SECUNIA - 29826

HP - SSRT080034


Last Updated: 27 May 2016 10:47:28