Lucene search

MitreCVE-2004-1710

HistoryFeb 26, 2005 - 5:00 a.m.

CVE-2004-1710

2005-02-2605:00:00

mitre

web.nvd.nist.gov

cve

2004

1710

page.cgi

remote attackers

execute

arbitrary commands

shell metacharacters

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.013

Percentile

86.1%

JSON

page.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the url parameter.

Affected configurations

Nvd

Node

andrew_kilpatrickpage_cgi

VendorProductVersionCPE
andrew_kilpatrickpage_cgi*cpe:2.3:a:andrew_kilpatrick:page_cgi:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
andrew_kilpatrick	page_cgi	*	cpe:2.3:a:andrew_kilpatrick:page_cgi::::::::

References

marc.info/?l=bugtraq&m=109181771832634&w=2

www.osvdb.org/8936

exchange.xforce.ibmcloud.com/vulnerabilities/19713

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.013

Percentile

86.1%

JSON

Related for CVE-2004-1710