CVE-2005-1045

2005-04-1204:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark.

References

marc.info/?l=bugtraq&m=111323587931293&w=2

secunia.com/advisories/14898/

securitytracker.com/id?1013665

www.osvdb.org/15356

www.securityfocus.com/bid/13079

exchange.xforce.ibmcloud.com/vulnerabilities/20032