메뉴 건너뛰기

GREATUSER

cve

CVE-2017-16608

관리자 2018.01.25 04:00 조회 수 : 172

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within exec.jsp. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code under the context of the current user. Was ZDI-CAN-4749.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16608
번호 제목 글쓴이 날짜 조회 수
542 CVE-2016-3202 관리자 2016.06.17 170
541 CVE-2016-3203 관리자 2016.06.17 88
540 CVE-2016-3205 관리자 2016.06.17 205
539 CVE-2016-3206 관리자 2016.06.17 192
538 CVE-2016-3207 관리자 2016.06.17 213
537 CVE-2016-3210 관리자 2016.06.17 217
536 CVE-2016-3211 관리자 2016.06.17 165
535 CVE-2016-6989 관리자 2016.10.14 209
534 CVE-2016-6990 관리자 2016.10.14 170
533 CVE-2016-6992 관리자 2016.10.14 141
532 CVE-2016-6993 관리자 2016.10.14 204
531 CVE-2016-6994 관리자 2016.10.14 205
530 CVE-2016-6995 관리자 2016.10.14 193
529 CVE-2016-6996 관리자 2016.10.14 162
528 CVE-2017-6549 관리자 2017.03.10 143
위로