4 matches found
EUVD-2013-6573
Malware in sbrugna...
Directory traversal
Directory traversal vulnerability in the collect script in Splunk before 5.0.5 allows remote attackers to execute arbitrary commands via a .. dot dot in the file parameter. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2013-7394 is for the issue in the...
CVE-2013-7394
The "runshellscript echo.sh" script in Splunk before 5.0.5 allows remote authenticated users to execute arbitrary commands via a crafted string. NOTE: this issue was SPLIT from CVE-2013-6771 per ADT2 due to different vulnerability types...
CVE-2013-7394
CVE-2013-7394 concerns Splunk prior to 5.0.5, specifically the runshellscript echo.sh component. The issue allows remote authenticated users to execute arbitrary commands via a crafted string. The vulnerability is distinct from CVE-2013-6771 (directory traversal in the collect script) per ADT2. T...