Lucene search
HistoryFeb 12, 2009 - 11:30 p.m.
CVE-2009-0545
zeroshell
cve-2009-0545
remote command execution
nvd
security vulnerability
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.971 High
EPSS
Percentile
99.8%
cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action.
Affected configurations
Node
zeroshellzeroshellMatch1.0beta1
ORzeroshellzeroshellMatch1.0beta10
ORzeroshellzeroshellMatch1.0beta11
ORzeroshellzeroshellMatch1.0beta2
ORzeroshellzeroshellMatch1.0beta3
ORzeroshellzeroshellMatch1.0beta4
ORzeroshellzeroshellMatch1.0beta5
ORzeroshellzeroshellMatch1.0beta6
ORzeroshellzeroshellMatch1.0beta7
ORzeroshellzeroshellMatch1.0beta8
ORzeroshellzeroshellMatch1.0beta9
| CPE | Name | Operator | Version |
|---|---|---|---|
| zeroshell:zeroshell | zeroshell | eq | 1.0 |
Related
openvas
openvas
ZeroShell <= 1.0beta11 RCE Vulnerability
2020-10-19 00:00:00
attackerkb
attackerkb
CVE-2009-0545 βΒ ZeroShell Remote Code Execution
2009-02-12 00:00:00
cvelist
cvelist
CVE-2009-0545
2009-02-12 23:00:00
nuclei
nuclei
ZeroShell <= 1.0beta11 Remote Code Execution
2021-05-19 14:40:37
checkpoint_advisories
checkpoint_advisories
Zeroshell type Parameter Command Execution (CVE-2009-0545)
2021-04-27 00:00:00
nvd
nvd
CVE-2009-0545
2009-02-12 23:30:01
prion
prion
Deserialization of untrusted data
2009-02-12 23:30:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.971 High
EPSS
Percentile
99.8%
Related for CVE-2009-0545