CVE-2008-1331
CVE-2008-1331
cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 before 210/091.001, OXO600 before 610/014.001, and other versions, allows remote attackers to execute arbitrary commands and "obtain OXO resources" via shell metacharacters in the id2 parameter.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/5662unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/29798https://exchange.xforce.ibmcloud.com/vulnerabilities/41560https://www.exploit-db.com/exploits/5662http://www1.alcatel-lucent.com/psirt/statements/2008001/OXOrexec.htmhttp://www.securityfocus.com/archive/1/492383/100/0/threadedhttp://www.securityfocus.com/bid/28758http://www.securitytracker.com/id?1020082http://www.vupen.com/english/advisories/2008/1057