CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2000-0697

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0440%
EPSS Percentile28.79th
Published2000年10月20日
Last Modified2026年4月16日

Vulnerability Description

The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.

Affected Platforms (CPE)

📦
Sun

Solaris Answerbook2

= 1.3
📦
Sun

Solaris Answerbook2

= 1.4
📦
Sun

Solaris Answerbook2

= 1.4.1
📦
Sun

Solaris Answerbook2

= 1.4.2

References & Advisories

🔗 http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
🔗 http://seclists.org/bugtraq/2000/Aug/0105.html
🔗 http://www.iss.net/security_center/static/5058.php
🔗 http://www.s21sec.com/en/avisos/s21sec-004-en.txt
🔗 http://www.securityfocus.com/bid/1556
🔗 http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
🔗 http://seclists.org/bugtraq/2000/Aug/0105.html
🔗 http://www.iss.net/security_center/static/5058.php

相關漏洞威脅

CVE-2000-06967.5

The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supp...

CVE-2005-05484.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...

CVE-2005-05494.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...

CVE-2000-017710.0

DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.