← back
CVE-2006-5258

CVE-2006-5258

EPSS 2.3%
The spell checking component of (1) Asbru Web Content Management before 6.1.22, (2) Asbru Web Content Editor before 6.0.22, and (3) Asbru Website Manager before 6.0.22 allows remote attackers to execute arbitrary commands via an unspecified parameter that is not sanitized before Aspell is invoked.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0306.htmlhttp://editor.asbrusoft.com/page.php/id=727http://secunia.com/advisories/22344http://secunia.com/advisories/22353http://secunia.com/advisories/22472http://wcm.asbrusoft.com/page.php/id=791http://www.securityfocus.com/bid/20544http://www.vupen.com/english/advisories/2006/4004http://www.vupen.com/english/advisories/2006/4060http://www.vupen.com/english/advisories/2006/4061