Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:39 a.m.9 views

CVE-1999-0266

The info2www CGI script allows remote file access or remote command execution...

7.5CVSS7.2AI score0.09446EPSS
Exploits1References1
seebug.org
seebug.org
added 2008/10/25 12:0 a.m.44 views

RoarSmithinfo2www远程执行任意命令漏洞

BugCVE: CVE-1999-0266 BUGTRAQ: 1995 “info2www”是一个将GNU Info文本转化成HTML文件的CGI程序。 某些早期版本的info2www脚本实现上存在输入验证漏洞,远程攻击者可以利用此漏洞以Web进程的权限在主机上 执行任意系统命令。 问题在于程序脚本没有过滤用户输入中包含的一些shell元字符,远程攻击者可能以Web守护程序的权限(root或nobody)在主机上执行任意程序。 1.0-1.1 临时解决方法: 如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:...

7.5CVSS6.6AI score0.09446EPSS
Exploits1
CVE
CVE
added 1999/09/29 4:0 a.m.54 views

CVE-1999-0266

The CVE-1999-0266 issue affects the info2www CGI script, which can allow remote file access or remote command execution. The vulnerability arises from insufficient input filtering of shell meta-characters in early info2www versions, enabling an attacker to run arbitrary commands with the web serv...

7.5CVSS7.2AI score0.09446EPSS
Exploits1References1Affected Software1
NVD
NVD
added 1998/03/01 5:0 a.m.11 views

CVE-1999-0266

The info2www CGI script allows remote file access or remote command execution...

7.5CVSS0.09446EPSS
Exploits1References1
Rows per page
Query Builder