8 matches found
FreeBSD Ports: pear-Net_Ping
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)
The remote host is missing updates announced in advisory GLSA 200911-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)
The remote host is missing updates announced in advisory GLSA 200911-06. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Fedora 12 : php-pear-Net-Traceroute-0.21.2-1.fc12 (2009-11551)
Upstream changelog: QA Release: Prevent command injection kguest CVE-2009-4025 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 11 : php-pear-Net-Traceroute-0.21.2-1.fc11 (2009-11617)
Upstream changelog: QA Release: Prevent command injection kguest CVE-2009-4025 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 10 : php-pear-Net-Traceroute-0.21.2-1.fc10 (2009-12083)
Upstream changelog: QA Release: Prevent command injection kguest CVE-2009-4025 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
CVE-2009-4025
Argument injection vulnerability in the traceroute function in Traceroute.php in the NetTraceroute package before 0.21.2 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: some of these details are obtained from third party information...
CVE-2009-4025
CVE-2009-4025 affects the PEAR package Net_Traceroute for PHP, specifically the Traceroute.php component, where the traceroute host input is passed to exec without proper sanitization. Vulnerable: Net_Traceroute before version 0.21.2. Attack impact: remote attackers could execute arbitrary shell ...