Vulnerability in N/a
CVE-2008-1331
cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 before 210/091.001, OXO600 before 610/014.001, and other versions, allows remote attackers to execute arbitrary commands and "obtain OXO resources" via shell me…
EPSS: 0.585 (98.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 5662 (exploit, x_refsource_EXPLOIT-DB)
- www1.alcatel-lucent.com/psirt/statements/2008001/OXOrexec.htm (x_refsource_CONFIRM)
- 29798 (x_refsource_SECUNIA, third-party-advisory)
- ADV-2008-1057 (vdb-entry, x_refsource_VUPEN)
- omnipcx-cgiscript-info-disclosure(41560) (vdb-entry, x_refsource_XF)
- 28758 (vdb-entry, x_refsource_BID)
- 20080521 [DSECRG-08-020] Alcatel OmniPCX Office Remote Comand Execution (mailing-list, x_refsource_BUGTRAQ)
- 1020082 (vdb-entry, x_refsource_SECTRACK)