CVE-2005-2334

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0280%

EPSS Percentile33.28th

Published2005年7月20日

Last Modified2026年4月16日

Vulnerability Description

Y.SAK allows remote attackers to execute arbitrary commands via shell metacharacters in the $no variable to (1) w_s3mbfm.cgi, (2) w_s3adix.cgi, or (3) w_s3sbfm.cgi.

Affected Platforms (CPE)

📦

Y.sak

All versions

References & Advisories

🔗 http://securitytracker.com/id?1014502

🔗 http://www.securityfocus.com/bid/14299

🔗 http://securitytracker.com/id?1014502

🔗 http://www.securityfocus.com/bid/14299

相關漏洞威脅

CVE-2015-32045.0

libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unas...

CVE-2005-063610.0

Format string vulnerability in Foxmail Server 2.0 allows remote attackers to cause a denial of service (crash) and possibly execut...

CVE-2005-089210.0

Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL ...

CVE-2005-001110.0

Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distrib...