Headline
CVE-2008-0892: 437301 – (CVE-2008-0892) CVE-2008-0892 Director Server: shell command injection in CGI replication monitor
The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.
Bug 437301 (CVE-2008-0892) - CVE-2008-0892 Director Server: shell command injection in CGI replication monitor
Summary: CVE-2008-0892 Director Server: shell command injection in CGI replication mon…
Keywords:
Status:
CLOSED ERRATA
Alias:
CVE-2008-0892
Product:
Security Response
Classification:
Other
Component:
vulnerability
Sub Component:
Version:
unspecified
Hardware:
All
OS:
Linux
Priority:
high
Severity:
high
Target Milestone:
—
Assignee:
Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
442679
Blocks:
TreeView+
depends on / blocked
Reported:
2008-03-13 14:17 UTC by Tomas Hoger
Modified:
2019-09-29 12:24 UTC (History)
CC List:
5 users (show)
Fixed In Version:
Doc Type:
Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:
2015-08-22 16:54:35 UTC
Attachments
(Terms of Use)
cvs commit log - 8.0 changes (1.78 KB, text/plain)
2008-04-15 16:53 UTC, Rich Megginson
no flags
Details
View All Add an attachment (proposed patch, testcase, etc.)
Links
System
ID
Private
Priority
Status
Summary
Last Updated
Red Hat Product Errata
RHSA-2008:0199
0
normal
SHIPPED_LIVE
Important: Red Hat Directory Server 7.1 Service Pack 5 security update
2008-04-15 21:10:47 UTC
Red Hat Product Errata
RHSA-2008:0201
0
normal
SHIPPED_LIVE
Critical: redhat-ds-admin security update
2008-04-15 21:10:43 UTC