CVE-2001-0808

UNRATED

Description

gnatsweb.pl in GNATS GnatsWeb 2.7 through 3.95 allows remote attackers to execute arbitrary commands via certain characters in the help_file parameter.

Affected products

yngve_svendsen / gnatsweb2.7_beta – 2.7_beta
yngve_svendsen / gnatsweb2.8.0 – 2.8.0
yngve_svendsen / gnatsweb2.8.1 – 2.8.1
yngve_svendsen / gnatsweb3.95 – 3.95

References

MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6753
MISChttp://sources.redhat.com/gnats/gnatsweb/advisory-jun-26-2001.html
MISChttp://archives.neohapsis.com/archives/bugtraq/2001-06/0365.html