CVE-2009-0545
12.02.2009, 23:30
cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action.Enginsight
Vendor | Product | Version |
---|---|---|
zeroshell | zeroshell | 1.0:beta1 |
zeroshell | zeroshell | 1.0:beta10 |
zeroshell | zeroshell | 1.0:beta11 |
zeroshell | zeroshell | 1.0:beta2 |
zeroshell | zeroshell | 1.0:beta3 |
zeroshell | zeroshell | 1.0:beta4 |
zeroshell | zeroshell | 1.0:beta5 |
zeroshell | zeroshell | 1.0:beta6 |
zeroshell | zeroshell | 1.0:beta7 |
zeroshell | zeroshell | 1.0:beta8 |
zeroshell | zeroshell | 1.0:beta9 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References