ID de Prueba:	1.3.6.1.4.1.25623.1.0.103119
Categoría:	Web application abuses
Título:	nostromo nhttpd < 1.9.4 RCE Vulnerability - Active Check
Resumen:	nostromo nhttpd is prone to a remote command execution (RCE); vulnerability because it fails to properly validate user-supplied data.
Descripción:	Summary: nostromo nhttpd is prone to a remote command execution (RCE) vulnerability because it fails to properly validate user-supplied data. Vulnerability Impact: An attacker can exploit this issue to access arbitrary files and execute arbitrary commands with application-level privileges. Affected Software/OS: nostromo versions prior to 1.9.4 are affected. Solution: Updates are available. Please see the references for details. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0751 BugTraq ID: 46880 http://www.securityfocus.com/bid/46880 Bugtraq: 20110315 [RT-SA-2011-001] nostromo nhttpd directory traversal leading to arbitrary command execution (Google Search) http://www.securityfocus.com/archive/1/517026/100/0/threaded http://www.redteam-pentesting.de/advisories/rt-sa-2011-001 http://osvdb.org/71235 http://secunia.com/advisories/43775 http://securityreason.com/securityalert/8140 http://www.vupen.com/english/advisories/2011/0674 XForce ISS Database: nostromo-http-command-execution(66103) https://exchange.xforce.ibmcloud.com/vulnerabilities/66103
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.