5 matches found
CVE-2000-0590
CVE-2000-0590 affects the Poll It 2.0 CGI script. The vulnerability allows a remote attacker to read arbitrary files by supplying a file name in the data_dir parameter, with an example showing access to /etc/passwd. OpenVAS/Nessus entries corroborate arbitrary file access via the CGI. Remediation...
CVE-2000-0590
Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the datadir parameter...
CVE-2000-1068
The CVE-2000-1068 entry concerns Poll It 2.0: the pollit.cgi component is vulnerable to remote command execution via shell metacharacters supplied in the poll_options parameter. The underlying issue is improper handling of user-supplied input in that parameter, enabling an attacker to execute arb...
CVE-2000-1068
pollit.cgi in Poll It 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the polloptions parameter...
CVE-2000-0590
Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the datadir parameter...