4378 matches found
CVE-1999-0947
AN-HTTPd server is affected by a remote command execution risk due to default CGI scripts test.bat, input.bat, input2.bat, and ssi/envout.bat that allow shell metacharacters. Exploitation would enable an attacker to run arbitrary commands on the remote host. The vulnerability details are drawn fr...
CVE-1999-0938
CVE-1999-0938 involves the MBone SDR Package, which is vulnerable to remote command execution via shell metacharacters in SIP messages. The concrete details indicate the affected software (MBone SDR Package) and the vulnerable component (SIP message handling that allows shell metacharacter input)...
CVE-2000-0059
PHP3 with safemode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands...
CVE-1999-0934
classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters...
CVE-1999-0978
CVE-1999-0978 concerns ht://Dig htsearch CGI in the htdig package. Connected Nessus entry describes an information-disclosure vulnerability where the htsearch CGI allows reading arbitrary files on the target host. The affected component is the htsearch CGI (part of ht/dig), prior to version 3.1.5...
CVE-1999-1333
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded...
CVE-2000-0013
IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program...
CVE-1999-1512
The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field...
CVE-2000-0010
WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter...
PT-1999-1848 · Glftpd · Glftpd
Name of the Vulnerable Software and Affected Versions: glFtpD affected versions not specified Description: The issue allows local users to gain privileges through the use of metacharacters in the SITE ZIPCHK command. Recommendations: At the moment, there is no information about a newer version th...
CVE-1999-0934
classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters...
CVE-1999-0978
htdig allows remote attackers to execute commands via filenames with shell metacharacters...
CVE-1999-0985
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry...
CVE-1999-0984
Matt's Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry...
CVE-1999-0983
Whois Internic Lookup program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry...
PT-1999-1503 · Internic · Whois Internic Lookup
Name of the Vulnerable Software and Affected Versions: Whois Internic Lookup program affected versions not specified Description: The issue allows remote attackers to execute commands via shell metacharacters in the domain entry. This can be exploited by injecting malicious input into the domain...
PT-1999-1504 · Matt · Whois.Cgi
Name of the Vulnerable Software and Affected Versions: Matt's Whois program whois.cgi affected versions not specified Description: The issue allows remote attackers to execute commands via shell metacharacters in the domain entry. Recommendations: At the moment, there is no information about a...
PT-1999-1505 · Cc · Cc Whois
Name of the Vulnerable Software and Affected Versions: CC Whois program affected versions not specified Description: The issue allows remote attackers to execute commands via shell metacharacters in the domain entry. This can be done by injecting malicious input into the domain field, potentially...
CVE-1999-0947
AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters...
CVE-1999-0097
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters e.g. a pipe character...