2 matches found
CVE-2005-2482
CVE-2005-2482 affects Metasploit Framework 2.4 and earlier (msfweb StateToOptions). The vulnerability occurs when running with -D (defanged mode): an attacker could modify temporary environment variables before the _Defanged check is performed while processing the Exploit command. NVD lists a Bas...
CVE-2005-2482
The StateToOptions function in msfweb in Metasploit Framework 2.4 and earlier, when running with the -D option defanged mode, allows attackers to modify temporary environment variables before the "Defanged" environment option is checked when processing the Exploit command...