CVE

Id
66828  
CVE No.
CVE-2013-6881  
Status
Candidate  
Description
CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) sector size or (2) skip count fields for the forensic imaging task.  
Phase
Assigned (20131127)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
647050 66828 CVE-2013-6881 EXPLOIT-DB:30396  View
647051 66828 CVE-2013-6881 URL:http://www.exploit-db.com/exploits/30396  View
647052 66828 CVE-2013-6881 FULLDISC:20131212 Ditto Forensic FieldStation, multiple vulnerabilities  View
647053 66828 CVE-2013-6881 URL:http://seclists.org/fulldisclosure/2013/Dec/80  View
647054 66828 CVE-2013-6881 MISC:http://packetstormsecurity.com/files/124420/Ditto-Forensic-FieldStation-2013Oct15a-XSS-CSRF-Command-Execution.html  View
647055 66828 CVE-2013-6881 MISC:http://www.cru-inc.com/support/software-downloads/ditto-firmware-updates/ditto-firmware-release-notes-2013jun30a/  View
647056 66828 CVE-2013-6881 MISC:http://www.cru-inc.com/support/software-downloads/ditto-firmware-updates/ditto-firmware-release-notes-2013oct15a/  View
647057 66828 CVE-2013-6881 SECUNIA:55989  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24165 JVNDB-2013-005740 複数ベンダの OS 製品上で稼働する RealVNC VNC における権限を取得される脆弱性 Mac OS X、Linux、および UNIX 上で稼働する RealVNC VNC には、権限を取得される脆弱性が存在します。 CVE-2013-6886 66828 7.2 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005740.html  View