Vulnerability in N/a
CVE-2002-0061
Apache for Win32 before 1.3.24, and 2.0.x before 2.0.34-beta, allows remote attackers to execute arbitrary commands via shell metacharacters (a | pipe character) provided as arguments to batch (.bat) or .cmd scripts, which are sent unfilte…
EPSS: 0.883 (99.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.apacheweek.com/issues/02-03-29 (x_refsource_CONFIRM)
- 4335 (vdb-entry, x_refsource_BID)
- apache-dos-batch-command-execution(8589) (vdb-entry, x_refsource_XF)
- 20020321 Vulnerability in Apache for Win32 batch file processing - Remote command execution (mailing-list, x_refsource_BUGTRAQ)
- 20020325 Apache 1.3.24 Released! (fwd) (mailing-list, x_refsource_BUGTRAQ)
- [httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ (mailing-list, x_refsource_MLIST)
- [httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html (mailing-list, x_refsource_MLIST)
- [httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ (mailing-list, x_refsource_MLIST)
- [httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html (mailing-list, x_refsource_MLIST)