importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows remote attackers to exploit this vulnerability via a separate XSS issue (CVE-2002-1315).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2002-11-21T05:00:00
Updated: 2016-10-17T13:57:01
Reserved: 2002-11-20T00:00:00
Link: CVE-2002-1316
JSON object: View
NVD Information
Status : Modified
Published: 2002-11-29T05:00:00.000
Modified: 2016-10-18T02:25:48.657
Link: CVE-2002-1316
JSON object: View
Redhat Information
No data.
CWE