Security Advisory

CVE-2010-4368

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-12-02 16:00:00

Last updated 2024-09-16 19:39:59

Assigner mitre

State PUBLISHED

Description

awstats.cgi in AWStats before 7.0 on Windows accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located at a UNC share pathname.

← Browse all CVEs View on cve.org ↗