EDB-4734
webappsphpVERIFIED
Anon Proxy Server 0.1000 - Remote Command Execution
CVE-2007-6459
Michael Brooks12/14/2007
描述
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.
AI分析AI驱动
受影响产品
anon_proxy_serveranon_proxy_server
0.100
可用漏洞利用 (1)
参考资料
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734
- http://osvdb.org/43711
- http://osvdb.org/43712
- http://securityreason.com/securityalert/3463
- http://www.securityfocus.com/archive/1/485151/100/0/threaded
- http://www.securityfocus.com/bid/26882Exploit
- https://www.exploit-db.com/exploits/4734