7 matches found
CVE-2019-12771
Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring...
ThinStation Command Injection Vulnerability
ThinStation is an open source Linux implementation of a thin client system. A command injection vulnerability exists in ThinStation 6.1.1 and prior versions. The vulnerability arises from a network system or product not properly filtering specific elements of externally entered data during the...
CVE-2019-12771
Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring...
CVE-2019-12771
Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring...
Command injection
Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring...
CVE-2019-12771
Thinstation shows a command-injection vulnerability (CVE-2019-12771) affecting ThinStation 6.1.1 and earlier. The flaw arises from unsafely constructed shell commands triggered by user-controlled data in the CGI endpoints cgi-bin/CdControl.cgi?action= and cgi-bin/VolControl.cgi?OK=, allowing an a...
CVE-2019-12771
Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring...