CS Whois Lookup 'ip' Parameter Remote Command Execution Vulnerability Network Vulnerability

Summary

CS Whois Lookup and CS DNS Lookup are prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. Successful attacks can compromise the affected software and possibly the computer.

References

http://www.securityfocus.com/bid/34700

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat Windows Installer Privilege Escalation Vulnerability
Apple Safari PDF Javascript Security Bypass Bypass Vulnerability
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
Arkeia Appliance Path Traversal Vulnerability
Artmedic Kleinanzeigen File Inclusion Vulnerability

Take action and discover your vulnerabilities