CVE-2007-6176

2007-11-30T00:46:00
ID CVE-2007-6176
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:29:00

Description

kb_whois.cgi in K+B-Bestellsystem (aka KB-Bestellsystem) allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) domain or (2) tld parameter in a check_owner action.