Multiple unspecified vulnerabilities in DFLabs PTK 1.0.0 through 1.0.4 allow remote attackers to execute arbitrary commands in processes launched by PTKs Apache HTTP Server via (1) external tools or (2) a crafted forensic image.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ptk | Dflabs | 1.0.0 (including) | 1.0.0 (including) |
| Ptk | Dflabs | 1.0.1 (including) | 1.0.1 (including) |
| Ptk | Dflabs | 1.0.2 (including) | 1.0.2 (including) |
| Ptk | Dflabs | 1.0.3 (including) | 1.0.3 (including) |
| Ptk | Dflabs | 1.0.4 (including) | 1.0.4 (including) |
References
- http://ptk.dflabs.com/faq.html
- http://ptk.dflabs.com/security.html
- http://www.kb.cert.org/vuls/id/845747
- http://www.kb.cert.org/vuls/id/RGII-7Q4GBJ
- http://www.securityfocus.com/bid/34111
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49235
- http://ptk.dflabs.com/faq.html
- http://ptk.dflabs.com/security.html
- http://www.kb.cert.org/vuls/id/845747
- http://www.kb.cert.org/vuls/id/RGII-7Q4GBJ
- http://www.securityfocus.com/bid/34111
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49235