Microburst uStorekeeper 1.x Remote Arbitrary Commands Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2536/info A vulnerability exists in versions of uStorekeeper Online Shopping System from Microburst Technologies. The script fails to properly validate user-supplied input, allowing remote users to submit URLs containing...

CVE-2001-1160

udirectory.pl in Microburst Technologies uDirectory 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the categoryfile field...

CVE-2001-1160

CVE-2001-1160 affects Microburst Technologies uDirectory 2.0 and earlier. The vulnerability enables remote attackers to execute arbitrary commands by supplying shell metacharacters in the category_file field. No remediation details are provided in the supplied documents. The connected EUVD record...

CVE-2001-1160

udirectory.pl in Microburst Technologies uDirectory 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the categoryfile field...

new advisory

---=== UkR security team - Advisory ===--- uStorekeepertm Online Shopping System - Runtime Script - 'arbitrary file retreival' vulnerability Date: 03.04.2001 Problem: input validation error. Vulnerable products: ustorekeeper.pl version 1.61 probably others, but not tested Product vendor: Microbur...

Microburst uStorekeeper 1.x - Arbitrary Commands

source: https://www.securityfocus.com/bid/2536/info A vulnerability exists in versions of uStorekeeper Online Shopping System from Microburst Technologies. The script fails to properly validate user-supplied input, allowing remote users to submit URLs containing '/../' sequences and arbitrary...