Astrocam远程命令执行漏洞

漏洞信息详情

Astrocam远程命令执行漏洞

• CNNVD编号：CNNVD-200212-450
• 危害等级： 超危
  
  
• CVE编号：
  CVE-2002-1874
  
• 漏洞类型：
  
  
  输入验证
  
• 发布时间：
  
  2002-12-31
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  astrocam
• 漏洞来源：
  Astrocam

AstroCam 1.7.1至2.1.2版本的astrocam.cgi存在漏洞。远程攻击者借助HTTP请求中的shell元字符执行任意命令。

This issue has been addressed in AstroCam 2.1.3. Those affected by the vulnerability are advised to upgrade.
AstroCam AstroCam 1.7.1

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 1.8

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 1.8.5

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 1.8.6

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 2.0

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 2.1

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

AstroCam AstroCam 2.1.2

• AstroCam AstroCam 2.1.3
  
  http://freshmeat.net/redir/astrocam/28903/url_tgz/astrocam.tar.gz&user
  =cdp_xe

来源: BID
名称: 6105
链接:http://www.securityfocus.com/bid/6105

来源: XF
名称: astrocam-cgi-command-execution(10538)
链接:http://www.iss.net/security_center/static/10538.php

来源: SECTRACK
名称: 1005523
链接:http://securitytracker.com/id?1005523

来源: astrocam.svn.sourceforge.net
链接:http://astrocam.svn.sourceforge.net/viewvc/astrocam/BUGS?view=markup