Vulnerabilities > CVE-2001-1290 - Unspecified vulnerability in Active web Suite Technologies Active Classifieds 1.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
active-web-suite-technologies
exploit available
NVD
Published: 2001-06-28
Updated: 2017-12-19

Summary

admin.cgi in Active Classifieds Free Edition 1.0, and possibly commercial versions, allows remote attackers to modify the configuration, gain privileges, and execute arbitrary Perl code via the table_width parameter.

Vulnerable Configurations

Part Description Count
Application
Active_Web_Suite_Technologies
1

Exploit-Db

descriptionActive Classifieds 1.0 Arbitrary Code Execution Vulnerability. CVE-2001-1290. Remote exploit for cgi platform
idEDB-ID:20982
last seen2016-02-02
modified2001-06-28
published2001-06-28
reporterIgor Dobrovitski
sourcehttps://www.exploit-db.com/download/20982/
titleActive Classifieds 1.0 - Arbitrary Code Execution Vulnerability

References