CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
84.8%
PEAR Security Advisory reports:
Multiple remote arbitrary command injections have been
found in the Net_Ping and Net_Traceroute.
When input from forms are used directly, the attacker
could pass variables that would allow him to execute
remote arbitrary command injections.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | pear-net_ping | <Â 2.4.5 | UNKNOWN |
FreeBSD | any | noarch | pear-net_traceroute | <Â 0.21.2 | UNKNOWN |