Showing 1 - 2 of 2

CVE-2005-1527

Status Candidate

Overview

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.

Related Files

Gentoo Linux Security Advisory 200508-7: Posted Aug 17, 2005; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory GLSA 200508-07 - When using a URLPlugin, AWStats fails to sanitize Referrer URL data before using them in a Perl eval() routine. Versions less than 6.5 are affected.; tags | advisory, perl; systems | linux, gentoo; advisories | CVE-2005-1527; SHA-256 | 29e8f8b5a0e530a35adb5742adf73ee87b44d8633ea71413519119f2dadbf849; Download | Favorite | View

iDEFENSE Security Advisory 2005-08-09.t: Posted Aug 10, 2005; Authored by iDefense Labs, Peter Vreugdenhil | Site idefense.com; iDEFENSE Security Advisory 08.09.05 - Remote exploitation of an input validation vulnerability in AWStats allows remote attackers to execute arbitrary commands. Versions below 6.4 are affected.; tags | advisory, remote, arbitrary; advisories | CVE-2005-1527; SHA-256 | b551c080e6aa7f7a4b53c8b33df46b0f71c71c4a680b518e26ea51230e52cce6; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 383 files
Ubuntu 90 files
Debian 27 files
Gentoo 18 files
tmrswrr 12 files
Ph0s 5 files
R0ckE7 5 files
Google Security Research 4 files
Rahad Chowdhury 4 files
Chizuru Toyama 3 files

File Archives

Systems

AIX (429)
Apple (2,037)
BSD (375)
CentOS (57)
Cisco (1,926)
Debian (6,911)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,379)
HPUX (880)
iOS (363)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (47,839)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (14,618)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,135)
UNIX (9,339)
UnixWare (187)
Windows (6,606)
Other

CVE-2005-1527

Overview

Related Files

File Archive:

December 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems