Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:7633FA20273522392C8E980EF49B6DE5
HistoryJul 28, 2006 - 12:00 a.m.

ViRobot Server web interface addschup buffer overflow

2006-07-2800:00:00
SAINT Corporation
download.saintcorporation.com
18

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.161 Low

EPSS

Percentile

95.4%

JSON

Added: 07/28/2006
CVE: CVE-2005-2041
BID: 13964
OSVDB: 17320

Background

ViRobot Linux Server includes a web-based control interface.

Problem

A buffer overflow in the **addschup** CGI program included in the ViRobot Linux Server allows remote attackers to write arbitrary commands into the root crontab file, leading to complete control over the server.

Resolution

Apply the patch.

References

<http://archives.neohapsis.com/archives/fulldisclosure/2005-06/0188.html&gt;

Platforms

Linux

Related

cve 2
saint 3
nessus 1
cve
cve
CVE-2005-2041
2005-06-15 04:00:00
CVE-2005-2671
2005-08-23 04:00:00
saint
saint
ViRobot Server web interface addschup buffer overflow
2006-07-28 00:00:00
ViRobot Server web interface addschup buffer overflow
2006-07-28 00:00:00
ViRobot Server web interface addschup buffer overflow
2006-07-28 00:00:00
nessus
nessus
ViRobot Linux Server addschup Multiple Overflows
2005-06-15 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.161 Low

EPSS

Percentile

95.4%

JSON
Related for SAINT:7633FA20273522392C8E980EF49B6DE5
cve2saint3nessus1