|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> HAMweather daysonly Arbitrary Code Execution Vulnerability Vulnerability Assessment Details
|
HAMweather daysonly Arbitrary Code Execution Vulnerability |
||
Executes arbitrary command via HAMweather Detailed Explanation for this Vulnerability Assessment Summary : The remote web server contains an application that permits execution of arbitrary code. Description : The remote host is running HAMweather, a weather-forecasting software application. The installed version of HAMweather fails to properly sanitize input to the 'daysonly' parameter before using it to evaluate PHP or Perl code. An unauthenticated attacker can leverage this issue to execute arbitrary code on the remote host subject to the rights of the web server user id. See also : http://www.gulftech.org/?node=research&article_id=00115-09302006 http://support.hamweather.com/viewtopic.php?t=6548 Solution : Upgrade to HAMweather 3.9.8.2 Perl/ASP or HAMweather 3.9.8.5 PHP or later. Network Security Threat Level: High / CVSS Base Score : 7 (AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N) Networks Security ID: 20311 Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security |
||
Cables, Connectors |
SAS - HGST Ultrastar 7K4000 HUS724040ALA640 0F14688 3.5" 4TB 7.2K RPM 64MB HDD
$19.99
WD 4TB Gold Enterprise - 7200 RPM SATA 6Gb/s 128MB CACHE 3.5" HDD - WD4002FYYZ
$49.99
HITACHI HUS724040ALA640 4TB 7200RPM 64MB SATA 6.0Gb/s 3.5" HARD DRIVE ZERO HOURS
$52.00
1TB HDD/SSD 2.5" SATA Hard Drive with Windows 10 or Windows 11 Pro Installed
$44.55
HGST Ultrastar DC HC520 12TB SATA 6Gb 256MB 3.5" Enterprise HDD- HUH721212ALE601
$74.99
Seagate ST12000NM0127 12TB SATA 6Gb/s 256MB 7200RPM 3.5" Enterprise Hard Drive
$99.99
Seagate Exos X20 18TB SATA 6Gb/s 3.5" Enterprise Hard Drive - ST18000NM003D
$183.94
2TB 1TB 500GB 3.5" SATA Hard Drive with Windows 10 or Windows 11 Installed
$15.65
Western Digital 2TB 7200RPM 3.5" SATA 3Gb/s HDD Enterprise Hard Drive WD2003FYYS
$49.99
Hitachi 4TB 3.5" Hard Drive HUS724040ALE640 Ultrastar 7K4000 Internal 7.2K
$49.95
|
||
No Discussions have been posted on this vulnerability. |