CVE Vulnerabilities

CVE-2000-0010

Published: Dec 26, 1999 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter.

Affected Software

Name Vendor Start Version End Version
Webwho+ Tony_greenwood 1.1 1.1

References