CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-2259

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0700%
EPSS Percentile30.42th
Published2005年7月13日
Last Modified2026年4月16日

Vulnerability Description

The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.

Affected Platforms (CPE)

📦
Usanet Creations

Domain Name Auction

All versions
📦
Usanet Creations

Makebid Auction Deluxe

All versions
📦
Usanet Creations

Makebid Auction Deluxe

= 3.30
📦
Usanet Creations

Makebid Auction Standard

All versions
📦
Usanet Creations

Makebid Reverse Auction

All versions
📦
Usanet Creations

Standard Classified Ads

All versions
📦
Usanet Creations

Usanet Shopping Mall

All versions

References & Advisories

🔗 http://secunia.com/advisories/15985
🔗 http://securitytracker.com/id?1014411
🔗 http://www.securityfocus.com/bid/14179
🔗 http://secunia.com/advisories/15985
🔗 http://securitytracker.com/id?1014411
🔗 http://www.securityfocus.com/bid/14179

相關漏洞威脅

CVE-2005-073510.0

newsscript.pl for NewsScript allows remote attackers to gain privileges by setting the mode parameter to admin.

CVE-2005-026010.0

Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to ex...

CVE-2005-070810.0

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncat...

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...