Pngren 2.0.1 – ‘Kaiseki.cgi’ Remote Command Execution

17次阅读
没有评论

Pngren 2.0.1 – ‘Kaiseki.cgi’ Remote Command Execution

漏洞ID 1055235 漏洞类型
发布时间 2005-07-07 更新时间 2005-07-07
Pngren 2.0.1 - 'Kaiseki.cgi' Remote Command ExecutionCVE编号 N/A
 		Pngren 2.0.1 - 'Kaiseki.cgi' Remote Command ExecutionCNNVD-ID N/A
漏洞平台 CGI CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25952
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/14182/info

pngren is prone to a remote arbitrary command execution vulnerability.

Reportedly, this issue arises when the user-specified values are passed to the 'kaiseki.cgi' script. Due to this, an attacker can supply arbitrary commands and have them executed in the context of the server.

This issue may facilitate unauthorized remote access in the context of the Web server to the affected computer. 

http://www.example.com/cgi-bin/kaiseki.cgi?file.exetension|command|
http://www.example.com/cgi-bin/kaiseki.cgi?|command|

相关推荐: 121 Software 121 WAM! FTP Server Directory Traversal Vulnerability

121 Software 121 WAM! FTP Server Directory Traversal Vulnerability 漏洞ID 1099724 漏洞类型 Access Validation Error 发布时间 2003-08-06 更新时间 …

正文完
pngren 漏洞
发表至: 网络安全漏洞
2021年4月9日
 0
文章搜索
热门文章
随机文章