5 matches found
Beanstalkd < 1.4.6 Remote Beanstalkd Command Injection
The installed version of Beanstalkd allows injection of Beanstalk commands. A malicious producer process or client could exploit this issue to inject arbitrary beanstalkd commands via the 'PUT' command to view status of existing jobs or delete jobs from the Beanstalkd queue without co-operation...
CVE-2010-2060
The put command functionality in beanstalkd 1.4.5 and earlier allows remote attackers to execute arbitrary Beanstalk commands via the body in a job that is too big, which is not properly handled by the dispatchcmd function in prot.c...
DEBIAN-CVE-2010-2060
The put command functionality in beanstalkd 1.4.5 and earlier allows remote attackers to execute arbitrary Beanstalk commands via the body in a job that is too big, which is not properly handled by the dispatchcmd function in prot.c...
CVE-2010-2060
Beanstalkd < 1.4.6 is vulnerable to a remote command execution via the PUT body when a job is too large; the issue stems from improper handling in dispatch_cmd in prot.c, enabling arbitrary Beanstalk commands. Affected version range includes 1.4.5 and earlier. CVSSv2 base score 7.5 (NETWORK, L...
CVE-2010-2060
The put command functionality in beanstalkd 1.4.5 and earlier allows remote attackers to execute arbitrary Beanstalk commands via the body in a job that is too big, which is not properly handled by the dispatchcmd function in prot.c...