5 matches found
CVE-2007-6176
Affected product/component: K+B-Bestellsystem, kb_whois.cgi. Vulnerability: remote attackers can execute arbitrary commands via shell metacharacters in the (1) domain or (2) tld parameter of the check_owner action. Impact: complete compromise of confidentiality, integrity, and availability (CVSS ...
KB-Bestellsystem - kb_whois.cgi Command Execution
KB-Bestellsystem - kbwhois.cgi Command Execution "KB-Bestellsystem" is a domain order system written in Perl. The "domain" and "tld" parameters in "kbwhois.cgi" are not filtering shell metacharacters. The following examples will show you the /etc/passwd file:...
KB-Bestellsystem (kb_whois.cgi) Command Execution Vulnerability
Exploit for cgi platform in category web applications =============================================================== KB-Bestellsystem kbwhois.cgi Command Execution Vulnerability =============================================================== "KB-Bestellsystem" is a domain order system written in...
Remote Shell Command Execution in "KB-Bestellsystem" (amensa-soft.de)
"KB-Bestellsystem" is a domain order system written in Perl. The "domain" and "tld" parameters in "kbwhois.cgi" are not filtering shell metacharacters. The following examples will show you the /etc/passwd file:...
KB-Bestellsystem - 'kb_whois.cgi' Command Execution
"KB-Bestellsystem" is a domain order system written in Perl. The "domain" and "tld" parameters in "kbwhois.cgi" are not filtering shell metacharacters. The following examples will show you the /etc/passwd file:...