Vulnerability Description
admin.cgi in Active Classifieds Free Edition 1.0, and possibly commercial versions, allows remote attackers to modify the configuration, gain privileges, and execute arbitrary Perl code via the table_width parameter.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Active Web Suite Technologies | Active Classifieds | 1.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0386.html
- http://www.osvdb.org/12326
- http://www.securityfocus.com/bid/2942
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6754
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0386.html
- http://www.osvdb.org/12326
- http://www.securityfocus.com/bid/2942
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6754
FAQ
What is CVE-2001-1290?
CVE-2001-1290 is a vulnerability with a CVSS score of 5.0 (MEDIUM). admin.cgi in Active Classifieds Free Edition 1.0, and possibly commercial versions, allows remote attackers to modify the configuration, gain privileges, and execute arbitrary Perl code via the table_...
How severe is CVE-2001-1290?
CVE-2001-1290 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1290?
Check the references section above for vendor advisories and patch information. Affected products include: Active Web Suite Technologies Active Classifieds.