Netjuke远程命令执行漏洞

漏洞信息详情

Netjuke远程命令执行漏洞

• CNNVD编号：CNNVD-200212-761
• 危害等级： 高危
  
  
• CVE编号：
  CVE-2002-2114
  
• 漏洞类型：
  
  
  输入验证
  
• 发布时间：
  
  2002-12-31
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2006-01-25
  
• 厂        商：
  
  netjuke
• 漏洞来源：
  Published in a Net…

Artekopia Netjuke 1.0 b7之前版本存在漏洞。远程攻击者可能通过section参数可以执行在web服务器上的任意代码，该漏洞被传给eval调用。

Netjuke has released 1.0b6.2 patch for versions 1.0 b3 through b6 which will address this issue. However, it is recommended to upgrade to 1.0b7 which also addresses this issue:
Netjuke Netjuke 1.0 b6

• Netjuke netjuke-patches-1.0b6.2
  
  http://sourceforge.net/tracker/download.php?group_id=42076&atid=432052
  &file_id=16607&aid=507312
• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

Netjuke Netjuke 1.0 b1

• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

Netjuke Netjuke 1.0 b4

• Netjuke netjuke-patches-1.0b6.2
  
  http://sourceforge.net/tracker/download.php?group_id=42076&atid=432052
  &file_id=16607&aid=507312
• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

Netjuke Netjuke 1.0 b2

• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

Netjuke Netjuke 1.0 b3

• Netjuke netjuke-patches-1.0b6.2
  
  http://sourceforge.net/tracker/download.php?group_id=42076&atid=432052
  &file_id=16607&aid=507312
• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

Netjuke Netjuke 1.0 b5

• Netjuke netjuke-patches-1.0b6.2
  
  http://sourceforge.net/tracker/download.php?group_id=42076&atid=432052
  &file_id=16607&aid=507312
• Netjuke netjuke-1.0b7
  
  http://prdownloads.sourceforge.net/netjuke/netjuke-1.0b7.tar.gz

来源: BID
名称: 3988
链接:http://www.securityfocus.com/bid/3988

来源: sourceforge.net
链接:http://sourceforge.net/tracker/index.php?func=detail&aid=507312&group_id=42076&atid=432052

来源: XF
名称: netjuke-section-command-execution(8101)
链接:http://xforce.iss.net/xforce/xfdb/8101

来源: sourceforge.net
链接:http://sourceforge.net/tracker/index.php?func=detail&aid=507312&group_id=42076&atid=432052