CVE

Id
26367  
CVE No.
CVE-2007-3010  
Status
Candidate  
Description
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.  
Phase
Assigned (20070604)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
267043 26367 CVE-2007-3010 BUGTRAQ:20070917 Alcatel-Lucent OmniPCX Remote Command Execution  View
267044 26367 CVE-2007-3010 URL:http://www.securityfocus.com/archive/1/archive/1/479699/100/0/threaded  View
267045 26367 CVE-2007-3010 FULLDISC:20070917 Alcatel-Lucent OmniPCX Remote Command Execution  View
267046 26367 CVE-2007-3010 URL:http://marc.info/?l=full-disclosure&m=119002152126755&w=2  View
267047 26367 CVE-2007-3010 MISC:http://www.redteam-pentesting.de/advisories/rt-sa-2007-001.php  View
267048 26367 CVE-2007-3010 CONFIRM:http://www1.alcatel-lucent.com/psirt/statements/2007002/OXEUMT.htm  View
267049 26367 CVE-2007-3010 BID:25694  View
267050 26367 CVE-2007-3010 URL:http://www.securityfocus.com/bid/25694  View
267051 26367 CVE-2007-3010 VUPEN:ADV-2007-3185  View
267052 26367 CVE-2007-3010 URL:http://www.vupen.com/english/advisories/2007/3185  View
267053 26367 CVE-2007-3010 OSVDB:40521  View
267054 26367 CVE-2007-3010 URL:http://osvdb.org/40521  View
267055 26367 CVE-2007-3010 SECUNIA:26853  View
267056 26367 CVE-2007-3010 URL:http://secunia.com/advisories/26853  View
267057 26367 CVE-2007-3010 XF:alcatel-unified-mastercgi-command-execution(36632)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53438 JVNDB-2007-002130 Fujitsu-Siemens Computers PRIMERGY BX300 における重要な情報を取得される脆弱性 Fujitsu-Seimens Computers ServerView で使用される Web インターフェース内の DBAsciiAccess CGI スクリプトには、重要な情報を取得される脆弱性が存在します。 CVE-2007-3012 26367 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002130.html  View