Vulnerabilities > CVE-2002-1971 - Remote Command Execution vulnerability in Sourcecraft Networking Utils 1.0

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
sourcecraft
critical

Summary

The ping utility in networking_utils.php in Sourcecraft Networking_Utils 1.0 allows remote attackers to read arbitrary files via shell metacharacters in the Domain name or IP address argument.

Vulnerable Configurations

Part Description Count
Application
Sourcecraft
1