The xmlrpc interface of cobbler was prone to command
injectoin
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 12.1 | x86_64 | cobbler | < 2.2.1-7.13.1 | cobbler-2.2.1-7.13.1.x86_64.rpm |
openSUSE | 12.1 | i586 | cobbler | < 2.2.1-7.13.1 | cobbler-2.2.1-7.13.1.i586.rpm |
openSUSE | 11.4 | i586 | koan | < 2.2.1-45.1 | koan-2.2.1-45.1.i586.rpm |
openSUSE | 12.1 | x86_64 | cobbler-web | < 2.2.1-7.13.1 | cobbler-web-2.2.1-7.13.1.x86_64.rpm |
openSUSE | 12.1 | x86_64 | koan | < 2.2.1-7.13.1 | koan-2.2.1-7.13.1.x86_64.rpm |
openSUSE | 11.4 | i586 | cobbler | < 2.2.1-45.1 | cobbler-2.2.1-45.1.i586.rpm |
openSUSE | 12.1 | i586 | cobbler-web | < 2.2.1-7.13.1 | cobbler-web-2.2.1-7.13.1.i586.rpm |
openSUSE | 11.4 | x86_64 | cobbler | < 2.2.1-45.1 | cobbler-2.2.1-45.1.x86_64.rpm |
openSUSE | 12.1 | i586 | koan | < 2.2.1-7.13.1 | koan-2.2.1-7.13.1.i586.rpm |
openSUSE | 11.4 | x86_64 | cobbler-web | < 2.2.1-45.1 | cobbler-web-2.2.1-45.1.x86_64.rpm |