CVE Vulnerabilities

CVE-2001-0808

Published: Dec 06, 2001 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

gnatsweb.pl in GNATS GnatsWeb 2.7 through 3.95 allows remote attackers to execute arbitrary commands via certain characters in the help_file parameter.

Affected Software

Name Vendor Start Version End Version
Gnatsweb Yngve_svendsen 2.7_beta 2.7_beta
Gnatsweb Yngve_svendsen 2.8.0 2.8.0
Gnatsweb Yngve_svendsen 2.8.1 2.8.1
Gnatsweb Yngve_svendsen 3.95 3.95

References