← Voltar para CVEs
CVE-2012-0262
N/ADescricao
op5config/welcome in system-op5config before 2.0.3 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado12/31/2013
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
op5:monitorop5:system-op5config
Fraquezas (CWE)
CWE-94
Referencias
http://seclists.org/fulldisclosure/2012/Jan/62(cve@mitre.org)
http://secunia.com/advisories/47417(cve@mitre.org)
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/(cve@mitre.org)
http://www.osvdb.org/78065(cve@mitre.org)
https://bugs.op5.com/view.php?id=5094(cve@mitre.org)
http://seclists.org/fulldisclosure/2012/Jan/62(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/47417(af854a3a-2127-422b-91ae-364da2661108)
http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf(af854a3a-2127-422b-91ae-364da2661108)
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/78065(af854a3a-2127-422b-91ae-364da2661108)
https://bugs.op5.com/view.php?id=5094(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.