3 matches found
CVE-2014-4981
LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to insufficient input sanitization of the web GUI parameters...
CVE-2014-4981
CVE-2014-4981 affects LPAR2RRD prior to 3.5 (and up to 3.5) and related versions where insufficient input sanitization of web GUI parameters allows remote attackers to execute arbitrary commands. The underlying issue is input validation that enables arbitrary command injection on the LPAR2RRD ser...
[oCERT-2014-005] LPAR2RRD input sanitization errors
2014-005 LPAR2RRD input sanitization errors Description: LPAR2RRD is a performance monitoring and capacity planning software for IBM Power Systems. LPAR2RRD generates historical, future trends and nearly "real-time" CPU utilization graphs of LPAR's and shared CPU usage. Insufficient input...