Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote malicious users to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
positive software h-sphere 2.3_rc3 |