cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 prior to 210/091.001, OXO600 prior to 610/014.001, and other versions, allows remote malicious users to execute arbitrary commands and "obtain OXO resources" via shell metacharacters in the id2 parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alcatel-lucent omnipcx office |