5 matches found
EUVD-2008-3906
Malware in sbrugna...
Debian DSA-682-1 : awstats - missing input sanitizing
In addition to CAN-2005-0116 more vulnerabilities have been found in awstats, a powerful and featureful web server log analyzer with a CGI frontend. Missing input sanitising can cause arbitrary commands to be executed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
AWStats <= 6.4 Multiple vulnerabilities
/==========================================/ // GHC - AWStats - ADVISORY PRODUCT: AWStats // VERSION: = 6.3 URL: http://awstats.sourceforge.net/ // VULNERABILITY CLASS: Multiple vulnerabilities RISK: high /==========================================/ Product Description "AWStats is a free powerful...
DSA-682-1 awstats - missing input sanitising
Bulletin has no description...
AWStats Multiple Remote Vulnerabilities (Cmd Exec, Traversal, ID)
The remote host is running AWStats, a free logfile analysis tool for analyzing ftp, mail, web, ... traffic. The remote version of this software is prone to a command execution flaw as well as an information disclosure vulnerability. An attacker may exploit this feature to obtain more information...