Vulnerability Description
graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ganglia | Php Rrd Web Client | 1.0.1 |
References
- http://securitytracker.com/id?1003376PatchVendor Advisory
- http://www.securityfocus.com/bid/3962
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7999
- http://securitytracker.com/id?1003376PatchVendor Advisory
- http://www.securityfocus.com/bid/3962
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7999
FAQ
What is CVE-2002-2104?
CVE-2002-2104 is a vulnerability with a CVSS score of 7.5 (HIGH). graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function.
How severe is CVE-2002-2104?
CVE-2002-2104 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2104?
Check the references section above for vendor advisories and patch information. Affected products include: Ganglia Php Rrd Web Client.