CVE-2006-3633

2006-07-2701:00:00

redhat

www.cve.org

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

JSON

OSSP shiela 1.1.5 and earlier allows remote authenticated users to execute arbitrary commands on the CVS server via shell metacharacters in a filename that is committed.

References

secunia.com/advisories/21209

www.openpkg.org/security/advisories/OpenPKG-SA-2006.014-shiela.html

www.securityfocus.com/bid/19199

www.sourcefire.com/services/advisories/sa072506.html

www.vupen.com/english/advisories/2006/2986

exchange.xforce.ibmcloud.com/vulnerabilities/27978