CVE-2010-4099

Publication date

2010-10-27 18:00:00

Family

mitre

State

PUBLISHED

Description

ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the Request parameter to ess.