mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 10:41:43 +00:00
845 B
845 B
CVE-2007-3010
Description
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.
POC
Reference
- http://marc.info/?l=full-disclosure&m=119002152126755&w=2
- http://www.redteam-pentesting.de/advisories/rt-sa-2007-001.php