Vulnerabilities > CVE-2002-0489 - Unspecified vulnerability in Linux Directory Penguin Nslookup 1.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

linux-directory-penguin

critical

NVD

Published: 2002-08-12

Updated: 2016-10-18

Summary

Linux Directory Penguin NsLookup CGI script (nslookup.pl) 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the (1) query or (2) type parameters.

Vulnerable Configurations

Part	Description	Count
Application	Linux_Directory_Penguin Linux Directory Penguin Nslookup 1.0	1

References

http://marc.info/?l=bugtraq&m=101684215209558&w=2
http://www.iss.net/security_center/static/8601.php
http://www.securityfocus.com/bid/4353