CVE-2005-1527
CVE-2005-1527
Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://secunia.com/advisories/16412http://secunia.com/advisories/17463http://securitytracker.com/id?1014636https://exchange.xforce.ibmcloud.com/vulnerabilities/21769https://usn.ubuntu.com/167-1/http://www.debian.org/security/2005/dsa-892http://www.idefense.com/application/poi/display?id=290&type=vulnerabilities&flashstatus=falsehttp://www.novell.com/linux/security/advisories/2005_19_sr.htmlhttp://www.osvdb.org/18696http://www.securiteam.com/unixfocus/5DP0J00GKE.htmlhttp://www.securityfocus.com/bid/14525