Vulnerability Description
The ReadLog function in kaiseki.cgi in pngren allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pngren | Pngren | 2.0.1 |
References
- http://seclists.org/lists/bugtraq/2005/Jul/0097.htmlVendor Advisory
- http://secunia.com/advisories/15981Vendor Advisory
- http://securitytracker.com/id?1014426ExploitVendor Advisory
- http://www.osvdb.org/17784
- http://www.securityfocus.com/bid/14182Exploit
- http://seclists.org/lists/bugtraq/2005/Jul/0097.htmlVendor Advisory
- http://secunia.com/advisories/15981Vendor Advisory
- http://securitytracker.com/id?1014426ExploitVendor Advisory
- http://www.osvdb.org/17784
- http://www.securityfocus.com/bid/14182Exploit
FAQ
What is CVE-2005-2205?
CVE-2005-2205 is a vulnerability with a CVSS score of 7.5 (HIGH). The ReadLog function in kaiseki.cgi in pngren allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
How severe is CVE-2005-2205?
CVE-2005-2205 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2205?
Check the references section above for vendor advisories and patch information. Affected products include: Pngren Pngren.