← Volver a CVEs
CVE-2012-0261
N/ADescripcion
license.php in system-portal before 1.6.2 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the timestamp parameter for an install action.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado12/31/2013
Ultima modificacion4/29/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
op5:monitorop5:system-portal
Debilidades (CWE)
CWE-94
Referencias
http://seclists.org/fulldisclosure/2012/Jan/62(cve@mitre.org)
http://secunia.com/advisories/47417(cve@mitre.org)
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/(cve@mitre.org)
http://www.osvdb.org/78064(cve@mitre.org)
https://bugs.op5.com/view.php?id=5094(cve@mitre.org)
http://seclists.org/fulldisclosure/2012/Jan/62(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/47417(af854a3a-2127-422b-91ae-364da2661108)
http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf(af854a3a-2127-422b-91ae-364da2661108)
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/78064(af854a3a-2127-422b-91ae-364da2661108)
https://bugs.op5.com/view.php?id=5094(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.