Vulnerability Details CVE-2008-0892
The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 86.0%
CVSS Severity
CVSS v2 Score 9.0
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
- http://secunia.com/advisories/29761
- http://secunia.com/advisories/29826
- http://secunia.com/advisories/30114
- http://www.redhat.com/support/errata/RHSA-2008-0199.html
- http://www.redhat.com/support/errata/RHSA-2008-0201.html
- http://www.securityfocus.com/bid/28802
- http://www.securitytracker.com/id?1019856
- http://www.vupen.com/english/advisories/2008/1449/references
- https://bugzilla.redhat.com/show_bug.cgi?id=437301
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41840
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
- http://secunia.com/advisories/29761
- http://secunia.com/advisories/29826
- http://secunia.com/advisories/30114
- http://www.redhat.com/support/errata/RHSA-2008-0199.html
- http://www.redhat.com/support/errata/RHSA-2008-0201.html
- http://www.securityfocus.com/bid/28802
- http://www.securitytracker.com/id?1019856
- http://www.vupen.com/english/advisories/2008/1449/references
- https://bugzilla.redhat.com/show_bug.cgi?id=437301
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41840
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html
- https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html
Products affected by CVE-2008-0892
-
cpe:2.3:a:redhat:directory_server:7.1
-
cpe:2.3:o:redhat:directory_server:8
-
cpe:2.3:o:redhat:fedora_directory_server:*