Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2007-3010

Publish Date: 17 Sep 2007

                source: http://www.securityfocus.com/bid/25694/info

Alcatel-Lucent OmniPCX Enterprise is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied data.

Attackers can exploit this issue to execute arbitrary commands with the privileges of the 'httpd' user. Successful attacks may facilitate a compromise of the application and underlying webserver; other attacks are also possible.

Alcatel-Lucent OmniPCX Enterprise R7.1 and prior versions are vulnerable to this issue. 

curl -k "https://www.example.com/cgi-bin/masterCGI?ping=nomip&amp;user=;ls\${IFS}-l;"

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Alcatel-Lucent OmniPCX Enterprise 7.1 - Remote Command Execution

Vulmon Search

About

Products

Connect