Positive Software: >> H-Sphere >> 2.3_rc3 Security Vulnerabilities
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
CVSS Score
7.5
EPSS Score
0.384
Published
2003-12-31
H-Sphere WebShell 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) mode and (2) zipfile parameters in a URL request.
CVSS Score
7.5
EPSS Score
0.013
Published
2003-12-31