EUVD-2008-0899

Malware in sbrugna...

Arbitrary Command Execution

redhat-ds-admin is vulnerable to arbitrary command execution. The vulnerability exists as a shell command injection flaw was discovered in the Red Hat Administration Server replication monitor CGI script used by Red Hat Directory Server 8.0. An attacker with access to the replication monitor web...

Design/Logic Flaw

The 1 Device Manager, 2 Tiered Storage Manager, 3 Replication Manager, 4 Replication Monitor, and 5 Hitachi Automation Director HAD components in HPE XP P9000 Command View Advanced Edition Software before 8.4.1-00 and XP7 Command View Advanced Edition Suite before 8.4.1-00 allow remote attackers ...

CVE-2016-4378

The CVE affects HP XP P9000 Command View Advanced Edition Software (before 8.4.1-00) and XP7 Command View Advanced Edition Suite (before 8.4.1-00). Vulnerable components include Device Manager, Tiered Storage Manager, Replication Manager, Replication Monitor, and Hitachi Automation Director (HAD)...

Fedora 7 : fedora-ds-admin-1.1.4-1.fc7 (2008-3214)

This release addresses two security vulerabilities in the package: - shell command injection in CGI replication monitor CVE-2008-0892 - unrestricted access to CGI scripts CVE-2008-0893 Fix Description: Remove ScriptAlias for bin/admin/admin/bin - do not use that directory for CGI URIs - use only...

Fedora 8 : fedora-ds-admin-1.1.4-1.fc8 (2008-3220)

This release addresses two security vulerabilities in the package: - shell command injection in CGI replication monitor CVE-2008-0892 - unrestricted access to CGI scripts CVE-2008-0893 Fix Description: Remove ScriptAlias for bin/admin/admin/bin - do not use that directory for CGI URIs - use only...

Authentication flaw

The replication monitor CGI script repl-monitor-cgi.pl in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands...

CVE-2008-0892

The replication monitor CGI script repl-monitor-cgi.pl in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands...

CVE-2008-0892

The CVE-2008-0892 issue affects the replication monitor CGI script (repl-monitor-cgi.pl) in the Red Hat Administration Server used with Red Hat Directory Server 8.0 on RHEL4/RHEL5, allowing remote command execution via the CGI interface. The root cause is a command-injection flaw in the replicati...

CVE-2008-0892

The replication monitor CGI script repl-monitor-cgi.pl in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands...

CVE-2007-2275

Unspecified vulnerability in HP StorageWorks Command View Advanced Edition for XP before 5.6.0-01, XP Replication Monitor before 5.6.0-01, and XP Tiered Storage Manager before 5.5.0-02 allows local users to access other accounts via unspecified vectors during registration or addition of new users...

Design/Logic Flaw

Unspecified vulnerability in Hitachi JP1/HiCommand DeviceManager, Global Link Availability Manager, Replication Monitor, Tiered Storage Manager, and Tuning Manager allows local users to obtain authentication information via unspecified vectors...

CVE-2007-1853

Technical details about CVE-2007-1853 are not publicly provided in the supplied documents; no affected products, root cause, vectors, or fixes are stated. Monitor for updates.