ID de Prueba:	1.3.6.1.4.1.25623.1.0.803712
Categoría:	Web application abuses
Título:	Plesk < 11.0.9 Multiple Vulnerabilities
Resumen:	Plesk is prone to PHP code execution and command execution; vulnerabilities.
Descripción:	Summary: Plesk is prone to PHP code execution and command execution vulnerabilities. Vulnerability Insight: The flaws are due to improper validation of HTTP POST requests. By sending a specially crafted direct request an attacker can execute PHP code or OS commands. Vulnerability Impact: Successful exploitation will allow remote attackers to execute PHP code or OS commands. Affected Software/OS: Plesk version 9.5.4, 9.3, 9.2, 9.0 and 8.6 are known to be affected. Solution: Update to version 11.0.9 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-3843 Bugtraq: 20130604 CVE-2013-3843 Monkey HTTPD 1.2.0 - Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution (Google Search) http://archives.neohapsis.com/archives/bugtraq/2013-06/0015.html http://secunia.com/advisories/53697 XForce ISS Database: monkeyhttpd-cve20133843-bo(84755) https://exchange.xforce.ibmcloud.com/vulnerabilities/84755 Common Vulnerability Exposure (CVE) ID: CVE-2013-4878 CERT/CC vulnerability note: VU#673343 http://www.kb.cert.org/vuls/id/673343 http://seclists.org/fulldisclosure/2013/Jun/21
Copyright	Copyright (C) 2013 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.