importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows remote attackers to exploit this vulnerability via a separate XSS issue (CVE-2002-1315).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2002-11-21T05:00:00

Updated: 2024-08-08T03:19:28.475Z

Reserved: 2002-11-20T00:00:00

Link: CVE-2002-1316

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2002-11-29T05:00:00.000

Modified: 2024-11-20T23:41:02.057

Link: CVE-2002-1316

cve-icon Redhat

No data.