Description

Revive Adserver before 4.0.1 allows remote attackers to execute arbitrary code via serialized data in the cookies related to the delivery scripts.

Remediation

References

CVE-2017-5830

Related Vulnerabilities

Oracle Database Server CVE-2011-0822 Vulnerability (CVE-2011-0822)

WordPress Plugin WP Page Builder Cross-Site Scripting (1.2.8)

Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-15842)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14721)

WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8)

Severity

Critical

Classification

CVE-2017-5830 CWE-502 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities