1 results (0.004 seconds)

CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0

Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) data2 and (2) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi. Linksys WAP54Gv3 firmware v3.04.03 y anteriores permite a atacants remotos ejecutar comandos de su elección a a través de una shell de metacaracteres en los parámetros (1) data2 y (2) data3 en (a) Debug_command_page.asp y (b) debug.cgi. • http://www.securityfocus.com/archive/1/511733/100/0/threaded • CWE-94: Improper Control of Generation of Code ('Code Injection') •