CVE-2007-3621 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-3621
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3621

Description: Multiple CRLF injection vulnerabilities in callboth.php in AsteriDex 3.0 and earlier allow remote attackers to inject arbitrary shell commands via the (1) IN and (2) OUT parameters.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/35270 SREASON http://securityreason.com/securityalert/2863 SAID Secunia Advisory: SA25965 MISC http://www.hoku.co.uk/advisories/asteridex.txt MILW0RM http://www.milw0rm.com/exploits/4151 CONFIRM http://bestof.nerdvittles.com/applications/asteridex/ BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/472907/100/0/threaded BID 24781

Return to the previous page.