CVE-2015-5082

2015-09-28T11:59:00
ID CVE-2015-5082
Type cve
Reporter NVD
Modified 2016-12-07T22:09:40

Description

Endian Firewall before 3.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) NEW_PASSWORD_1 or (2) NEW_PASSWORD_2 parameter to cgi-bin/chpasswd.cgi.