Vulnerabilities > CVE-2002-1361 - Unspecified vulnerability in SUN Cobalt RAQ 4

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
sun
nessus
exploit available
NVD
Published: 2002-12-23
Updated: 2024-11-20

Summary

overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter.

Vulnerable Configurations

Part Description Count
Hardware
Sun
1

Exploit-Db

descriptionCobalt RaQ4 Administrative Interface Command Execution Vulnerability. CVE-2002-1361. Remote exploit for linux platform
idEDB-ID:22072
last seen2016-02-02
modified2002-12-05
published2002-12-05
reportergrazer
sourcehttps://www.exploit-db.com/download/22072/
titleCobalt RaQ4 Administrative Interface Command Execution Vulnerability

Nessus

NASL familyCGI abuses
NASL idCOBALT_OVERFLOW_CGI.NASL
description/cgi-bin/.cobalt/overflow/overflow.cgi was detected. Some versions of this CGI allow remote users to execute arbitrary commands with the privileges of the web server. *** Nessus just checked the presence of this file *** but did not try to exploit the flaw, so this might *** be a false positive.
last seen2020-06-01
modified2020-06-02
plugin id11190
published2002-12-12
reporterThis script is Copyright (C) 2002-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/11190
titleCobalt RaQ4 Administrative Interface overflow.cgi Command Execution

References