Vulnerability Details CVE-2000-0697
The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.121
EPSS Ranking 93.4%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
- http://seclists.org/bugtraq/2000/Aug/0105.html
- http://www.iss.net/security_center/static/5058.php
- http://www.s21sec.com/en/avisos/s21sec-004-en.txt
- http://www.securityfocus.com/bid/1556
- http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
- http://seclists.org/bugtraq/2000/Aug/0105.html
- http://www.iss.net/security_center/static/5058.php
- http://www.s21sec.com/en/avisos/s21sec-004-en.txt
- http://www.securityfocus.com/bid/1556
Products affected by CVE-2000-0697
-
cpe:2.3:a:sun:solaris_answerbook2:1.3
-
cpe:2.3:a:sun:solaris_answerbook2:1.4
-
cpe:2.3:a:sun:solaris_answerbook2:1.4.1
-
cpe:2.3:a:sun:solaris_answerbook2:1.4.2