CVSS: 6.5EPSS: 1%CPEs: 1EXPL: 0CVE-2008-3126
https://notcve.org/view.php?id=CVE-2008-3126
Multiple stack-based buffer overflows in the ServerView web interface (SnmpGetMibValues.exe) in Fujitsu Siemens Computers ServerView 04.60.07 and earlier allow remote authenticated users to execute arbitrary code via a crafted URL. Múltiples desbordamientos de búfer basados en pila del interfaz web ServerView (SnmpGetMibValues.exe) en Fujitsu Siemens Computers ServerView 04.60.07 y anteriores permiten a usuarios remotos autenticados ejecutar código arbitrariamente a través de una URL manipulada. • http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063043.html http://secunia.com/advisories/30913 http://www.securityfocus.com/bid/30081 http://www.vupen.com/english/advisories/2008/2007/references https://exchange.xforce.ibmcloud.com/vulnerabilities/43611 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 2%CPEs: 33EXPL: 3CVE-2007-3011 – Fujitsu ServerView 4.50.8 - DBASCIIAccess Remote Command Execution
https://notcve.org/view.php?id=CVE-2007-3011
The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens Computers ServerView before 4.50.09 allows remote attackers to execute arbitrary commands via shell metacharacters in the Servername subparameter of the ParameterList parameter. La secuencia de comandos CGI DBAsciiAccess en el interfaz Web de Fujitsu-Siemens Computers ServerView anterior a 4.50.09 permite a atacantes remotos ejecutar comandos de su elección mediante metacaracteres de consola (shell) en el subparámetro Servername del parámetro ParameterList. Fujitsu-Siemens ServerView suffers from a remote command execution vulnerability. Full details provided. Versions below 4.50.09 are affected. • https://www.exploit-db.com/exploits/30264 http://osvdb.org/37835 http://secunia.com/advisories/25944 http://securityreason.com/securityalert/2858 http://www.redteam-pentesting.de/advisories/rt-sa-2007-002.php http://www.securityfocus.com/archive/1/472800/100/0/threaded http://www.securityfocus.com/bid/24762 http://www.vupen.com/english/advisories/2007/2441 https://exchange.xforce.ibmcloud.com/vulnerabilities/35257 •