CVE-2005-0436 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-0436

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.

Affected Software

Name	Vendor	Start Version	End Version
Awstats	Awstats	6.3 (including)	6.3 (including)
Awstats	Awstats	6.4 (including)	6.4 (including)
Awstats	Ubuntu	dapper	*
Awstats	Ubuntu	devel	*
Awstats	Ubuntu	edgy	*
Awstats	Ubuntu	feisty	*

References

http://secunia.com/advisories/14299
http://www.osvdb.org/13832
http://www.securityfocus.com/archive/1/390368
https://exchange.xforce.ibmcloud.com/vulnerabilities/19336
http://secunia.com/advisories/14299
http://www.osvdb.org/13832
http://www.securityfocus.com/archive/1/390368
https://exchange.xforce.ibmcloud.com/vulnerabilities/19336