Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0932

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0932
Last Modified 07 Mar 2011 10:05:41
Published 25 Feb 2008 04:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0932

Summary

diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter.

Vulnerable Systems

Application

  • The Sword Project Diatheke Front End 1.5.9

  • The Sword Project Sword 1.5.9


References

FEDORA - FEDORA-2008-1951

FEDORA - FEDORA-2008-1922

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=433723

VUPEN - ADV-2008-0670

BID - 27987

BID - 27874

DEBIAN - DSA-1508

SECUNIA - 29115

SECUNIA - 29012

SECUNIA - 25400

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=466449

GENTOO - GLSA-200803-06

SECUNIA - 29181


Last Updated: 27 May 2016 10:46:58