ID de Prueba:	1.3.6.1.4.1.25623.1.0.80008
Categoría:	Web application abuses
Título:	EyeOS <= 0.8.9 Command Execution Vulnerability
Resumen:	The installed version of EyeOS does not initialize user sessions properly,; allowing unauthenticated attackers to execute arbitrary commands with the privileges of the webserver.
Descripción:	Summary: The installed version of EyeOS does not initialize user sessions properly, allowing unauthenticated attackers to execute arbitrary commands with the privileges of the webserver. Solution: Upgrade to eyeOS version 0.8.10. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0636 BugTraq ID: 16537 http://www.securityfocus.com/bid/16537 Bugtraq: 20060207 eyeOS <= 0.8.9 Remote Code Execution (Google Search) http://www.securityfocus.com/archive/1/424329/100/0/threaded http://www.gulftech.org/?node=research&article_id=00096-02072006 http://securitytracker.com/id?1015609 http://secunia.com/advisories/18757 http://securityreason.com/securityalert/419 http://www.vupen.com/english/advisories/2006/0466 XForce ISS Database: eyeos-desktop-file-include(24569) https://exchange.xforce.ibmcloud.com/vulnerabilities/24569
Copyright	Copyright (C) 2008 Ferdy Riphagen

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.