Vulnerabilities > Positive Software > H Sphere > 2.3.rc3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1248 | Unspecified vulnerability in Positive Software H-Sphere 2.3Rc3 H-Sphere WebShell 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) mode and (2) zipfile parameters in a URL request. | 7.5 |
| 2003-12-31 | CVE-2003-1247 | Remote Buffer Overrun vulnerability in Positive Software H-Sphere 2.3Rc3 Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist. | 7.5 |