MiniShare 1.4.1 and prior versions are affected by a buffer overflow flaw.
A remote attacker could execute arbitrary commands by sending a specially
crafted file name in a the GET request.
References:
- http://www.osvdb.org/11530
- http://www.securityfocus.com/bid/11620
Kind regards
Gareth
gareth@sensepost.com
www.sensepost.com
A remote attacker could execute arbitrary commands by sending a specially
crafted file name in a the GET request.
References:
- http://www.osvdb.org/11530
- http://www.securityfocus.com/bid/11620
Kind regards
Gareth
gareth@sensepost.com
www.sensepost.com
Attached Files:
-
Minishare.nasl (1.34 KB)