Molly IRC bot 0.5 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $host variable for nslookup.pl, (2) the $to, $from, or $message variables in pop.pl, (3) the $words or $text variables in sms.pl, or (4) the $server or $printer variables in hpled.pl.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0028.html | |
http://online.securityfocus.com/archive/1/296163 | Patch Vendor Advisory |
http://www.iss.net/security_center/static/10397.php | |
http://www.securityfocus.com/bid/6007 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2003-03-18T05:00:00
Updated: 2003-03-21T10:00:00
Reserved: 2003-02-25T00:00:00
Link: CVE-2002-1536
JSON object: View
NVD Information
Status : Analyzed
Published: 2003-03-31T05:00:00.000
Modified: 2008-09-05T20:30:51.607
Link: CVE-2002-1536
JSON object: View
Redhat Information
No data.
CWE