CVE-2006-5872

EPSS 1.5%

發布日:2006/12/18修改日:2026/4/28

也稱為:DEBIAN-CVE-2006-5872

描述

login.pl in SQL-Ledger before 2.6.21 and LedgerSMB before 1.1.5 allows remote attackers to execute arbitrary Perl code via the "-e" flag in the script parameter, which is used as an argument to the perl program.

受影響套件(1)

Debian/sql-ledgerfrom 0, < 2.6.21-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-5872