Zeroshell type Parameter Command Execution (CVE-2009-0545)

ZeroShell is a small Linux distribution for servers and embedded devices. A vulnerability exists in Zeroshell that could be exploited by remote attackers to compromise a vulnerable system. The vulnerability is due to an input validation error in the "cgi-bin/kerbynet" script that does not validat...

CVE-2009-0545

cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action...

CVE-2009-0545

cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action...

CVE-2009-0545 — ZeroShell Remote Code Execution

cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action. Recent assessments: hrbrmstr at September 10, 2020 2:42pm UTC reported: MSF module — Assessed Attacker Value: 5...