7.5 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
71.5%
CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan.
marc.info/?l=bugtraq&m=101438631921749&w=2
www.iss.net/security_center/static/8035.php
www.securityfocus.com/bid/3975