EDB-4734
webappsphpVERIFIED
Anon Proxy Server 0.1000 - Remote Command Execution
CVE-2007-6459
Michael Brooks12/14/2007
説明
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.
AI分析AIによる分析
影響を受ける製品
anon_proxy_serveranon_proxy_server
0.100
利用可能なエクスプロイト (1)
参照
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734