importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows remote attackers to exploit this vulnerability via a separate XSS issue (CVE-2002-1315).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2002-11-21T05:00:00
Updated: 2024-08-08T03:19:28.475Z
Reserved: 2002-11-20T00:00:00
Link: CVE-2002-1316
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-11-29T05:00:00.000
Modified: 2024-11-20T23:41:02.057
Link: CVE-2002-1316
Redhat
No data.