Untrusted search path and argument injection vulnerability in the VersantD service in Versant Object Database 7.0.1.3 and earlier, as used in Borland CaliberRM and probably other products, allows remote attackers to execute arbitrary commands via a request to TCP port 5019 with a modified VERSANT_ROOT field.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:44
Type | Values Removed | Values Added |
---|---|---|
References | () http://aluigi.altervista.org/adv/versantcmd-adv.txt - Exploit | |
References | () http://marc.info/?l=bugtraq&m=120468784112145&w=2 - | |
References | () http://secunia.com/advisories/29230 - Vendor Advisory | |
References | () http://securityreason.com/securityalert/3738 - Exploit | |
References | () http://www.securityfocus.com/archive/1/489139/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/28097 - Exploit | |
References | () http://www.vupen.com/english/advisories/2008/0764/references - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/40997 - | |
References | () https://www.exploit-db.com/exploits/5213 - |
Information
Published : 2008-03-13 14:44
Updated : 2024-11-21 00:44
NVD link : CVE-2008-1319
Mitre link : CVE-2008-1319
CVE.ORG link : CVE-2008-1319
JSON object : View
Products Affected
versant
- versant_object_database
CWE