Best Practical Solutions RT 4.x prior to 4.0.6 does not properly implement the DisallowExecuteCode option, which allows remote authenticated users to bypass intended access restrictions and execute arbitrary code by leveraging access to a privileged account, a different vulnerability than CVE-2011-4458 and CVE-2011-5092.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bestpractical rt 4.0.0 |
||
bestpractical rt 3.8.12 |
||
bestpractical rt 4.0.1 |
||
bestpractical rt 4.0.2 |
||
bestpractical rt 4.0.3 |
||
bestpractical rt 4.0.4 |
||
bestpractical rt 4.0.5 |