Vulnerabilities > CVE-2005-2777 - Remote Command Execution vulnerability in Looking Glass Looking Glass 20040427

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
looking-glass
nessus
exploit available
NVD
Published: 2005-09-02
Updated: 2017-07-11

Summary

Looking Glass 20040427 allows remote attackers to execute arbitrary commands via shell metacharacters in the DNS lookup query field.

Vulnerable Configurations

Part Description Count
Application
Looking_Glass
1

Exploit-Db

descriptionLooking Glass v20040427 Remote Command Execution Vulnerability. CVE-2005-2777. Webapps exploit for php platform
idEDB-ID:26203
last seen2016-02-03
modified2005-08-27
published2005-08-27
reporterrgod
sourcehttps://www.exploit-db.com/download/26203/
titleLooking Glass 20040427 - Remote Command Execution Vulnerability

Nessus

NASL familyCGI abuses
NASL idLG_TARGET_CMD_EXEC.NASL
descriptionThe remote host appears to be running Jurriaan de Neef
last seen2020-06-01
modified2020-06-02
plugin id19523
published2005-08-30
reporterThis script is Copyright (C) 2005-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/19523
titleLooking Glass Multiple Vulnerabilities

References