CVE-2008-1214

Properties

Published:
06.03.2008
Updated:
11.03.2008
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Product:
Numara: FootPrints

Vulnerability description

MRcgi/MRProcessIncomingForms.pl in Numara FootPrints 8.1 on Linux allows remote attackers to execute arbitrary code via shell metacharacters in the PROJECTNUM parameter.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References:

SECUNIA: http://secunia.com/advisories/28659
XF: http://xforce.iss.net/xforce/xfdb/41005