Published: 23/12/2002 Updated: 10/10/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote malicious users to execute arbitrary code via a POST request with shell metacharacters in the email parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun cobalt raq 4

source: wwwsecurityfocuscom/bid/6326/info The RaQ4 is a server appliance distributed and maintained by Sun Microsystems A vulnerability has been reported in the web administration interface of the RaQ4 It is possible for a remote attacker to execute commands By passing malicious email parameter to the vulnerable CGI script, commands a ...

NVD-CWE-Other http://www.cert.org/advisories/CA-2002-35.html http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/49377 http://www.kb.cert.org/vuls/id/810921 http://www.ciac.org/ciac/bulletins/n-025.shtml http://www.securityfocus.com/bid/6326 http://marc.info/?l=bugtraq&m=103912513522807&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/10776 https://nvd.nist.gov https://www.exploit-db.com/exploits/22072/https://www.kb.cert.org/vuls/id/810921

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1361

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect