|
|
Subscribe / Log in / New account

diatheke: insufficient input sanitizing

Package(s):diatheke CVE #(s):CVE-2008-0932
Created:February 26, 2008 Updated:March 4, 2008
Description: From the Debian advisory: Dan Dennison discovered that Diatheke, a CGI program to make a bible website, performs insufficient sanitizing of a parameter, allowing a remote attacker to execute arbitrary shell commands as the web server user.
Alerts:
Fedora FEDORA-2008-1922 sword 2008-02-25
Debian DSA-1508-1 diatheke 2008-02-25
Gentoo 200803-06 sword 2008-03-03
Fedora FEDORA-2008-1951 sword 2008-02-25
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds