CVE-2005-0363
EPSS 0.90%awstats - missing input sanitising
發布日:2005/5/2修改日:2026/4/28
也稱為:DEBIAN-CVE-2005-0363
描述
awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.
受影響套件(2)
- Debian/awstatsfrom 0, < 6.2-1.2
- Debian/awstatsfrom 0, < 4.0-0.woody.2