Lucene search

K
cve[email protected]CVE-2006-0782
HistoryFeb 19, 2006 - 11:02 a.m.

CVE-2006-0782

2006-02-1911:02:00
NVD-CWE-Other
web.nvd.nist.gov
17
cve-2006-0782
perlblog
web security
code execution
remote attack

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.124 Low

EPSS

Percentile

95.3%

Unspecified vulnerability in weblog.pl in PerlBlog 1.09b and earlier allows remote attackers to create arbitrary files and possibly execute arbitrary code via unspecified attack vectors related to improper handling of (1) the reply parameter, possibly involving injection of (2) the name parameter and (3) the body parameter.

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.124 Low

EPSS

Percentile

95.3%

Related for CVE-2006-0782