CVE-2017-14118

Posted on by admin

CVE-2017-14118

In the EyesOfNetwork web interface (aka eonweb) 5.1-0, moduletool_alltoolsinterface.php does not properly restrict exec calls, which allows remote attackers to execute arbitrary commands via shell metacharacters in the host_list parameter to module/tool_all/select_tool.php.

Source: CVE-2017-14118

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다