RSS   Vulnerabilities for 'Verlihub'   RSS

2008-12-22
 
CVE-2008-5706

CWE-59
 

 
The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0.9.8d-RC2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/trigger.tmp temporary file.

 
 
CVE-2008-5705

CWE-20
 

 
The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0.9.8d-RC2 and earlier, when user triggers are enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in an argument.

 

 >>> Vendor: Verlihub-project 2 Products
Verlihub control panel
Verlihub


Copyright 2019, cxsecurity.com

 

Back to Top