Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3399

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-3399
Last Modified 16 Jul 2012 12:00:00
Published 12 Jul 2012 03:55:06
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-3399

Summary

Config/diff.php in Basilic 1.5.14 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.

Vulnerable Systems

Application

  • Artis.imag Basilic 1.5.14


References

XF - basilic-diff-command-execution(76667)

BID - 54234

MLIST - [oss-security] 20120709 Re: CVE-request: Basilic 1.5.14 diff.php remote code execution vulnerability

MLIST - [oss-security] 20120710 CVE-request: Basilic 1.5.14 diff.php remote code execution vulnerability

EXPLOIT-DB - 19631

BUGTRAQ - 20120706 Re: Basilic RCE bug

BUGTRAQ - 20120630 Basilic RCE bug


Last Updated: 27 May 2016 10:54:52