EDB-4734
webappsphpVERIFIED
Anon Proxy Server 0.1000 - Remote Command Execution
CVE-2007-6459
Michael Brooks12/14/2007
CVE-2007-6459
NONEAnon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and pos
Опубликовано: 12/20/2007Обновлено: 4/9/2025
Описание
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.
ИИ-АнализНа базе ИИ
Затронутые продукты
anon_proxy_serveranon_proxy_server
0.100
Доступные эксплойты (1)
Ссылки
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734