Description
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter.
Affected products
References
- MISChttp://www.ciac.org/ciac/bulletins/n-025.shtml
- MISChttp://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/49377
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/10776
- VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-2002-35.html
- MISChttp://www.kb.cert.org/vuls/id/810921
- MISChttp://www.securityfocus.com/bid/6326
- MAILING_LISThttp://marc.info/?l=bugtraq&m=103912513522807&w=2