CVE-2006-6454 — HIGH (10.0)

Q: How severe is CVE-2006-6454?

CVE-2006-6454 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-6454?

Check the references section above for vendor advisories and patch information. Affected products include: J-Owamp Web Interface.

Vulnerability Description

execInBackground.php in J-OWAMP Web Interface 2.1b and earlier allows remote attackers to execute arbitrary commands via shell metacharacters to the (1) exe and (2) args parameters, which are used in an exec function call. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
J-Owamp	Web Interface	<= 2.1b

References

FAQ

What is CVE-2006-6454?

CVE-2006-6454 is a vulnerability with a CVSS score of 10.0 (HIGH). execInBackground.php in J-OWAMP Web Interface 2.1b and earlier allows remote attackers to execute arbitrary commands via shell metacharacters to the (1) exe and (2) args parameters, which are used in ...

How severe is CVE-2006-6454?

CVE-2006-6454 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-6454?

Check the references section above for vendor advisories and patch information. Affected products include: J-Owamp Web Interface.