๐ CVE-2015-5082 | Endian Firewall up to 2.x cgi-bin/chpasswd.cgi NEW_PASSWORD_1/NEW_PASSWORD_2 command injection (ID 133469 / EDB-37426)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in Endian Firewall up to 2.x. It has been classified as critical. Affected is an unknown function of the file cgi-bin/chpasswd.cgi. The manipulation of the argument NEW_PASSWORD_1/NEW_PASSWORD_2 leads to command injection. This vulnerability is traded as CVE-2015-5082. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component. ...