CVE-2008-5810

NONECVSS 0.0

0.0

WBPublish (aka WBPublish.exe) in Fujitsu-Siemens WebTransactions 7.0, 7.1, and possibly other versions allows remote attackers to execute arbitrary commands via shell metacharacters in input that is sent through HTTP and improperly used during temporary session data cleanup, possibly related to (1) directory names, (2) template names, and (3) session IDs.

🔗 References (18)

cve@mitrehttp://bs2www.fujitsu-siemens.de/update/securitypatch.htm#english
cve@mitrehttp://secunia.com/advisories/33168
cve@mitrehttp://securityreason.com/securityalert/4856
cve@mitrehttp://www.sec-consult.com/files/20081219-0_fujitsu-siemens_webta_cmdexec.txt
cve@mitrehttp://www.securityfocus.com/archive/1/499417/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/32927
cve@mitrehttp://www.securitytracker.com/id?1021475
cve@mitrehttp://www.vupen.com/english/advisories/2008/3462
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/47495
af854a3a-2127-422b-91ae-364da2661108http://bs2www.fujitsu-siemens.de/update/securitypatch.htm#english
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/33168
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4856
af854a3a-2127-422b-91ae-364da2661108http://www.sec-consult.com/files/20081219-0_fujitsu-siemens_webta_cmdexec.txt
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/499417/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/32927

Is Your Infrastructure Affected by CVE-2008-5810?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-5810

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-5810?