CVE-2005-2259

The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:usanet_creations:domain_name_auction:*:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:makebid_auction_deluxe:*:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:makebid_auction_deluxe:3.30:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:makebid_auction_standard:*:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:makebid_reverse_auction:*:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:standard_classified_ads:*:*:*:*:*:*:*:*
cpe:2.3:a:usanet_creations:usanet_shopping_mall:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-07-13 04:00

Updated : 2024-02-28 10:42


NVD link : CVE-2005-2259

Mitre link : CVE-2005-2259

CVE.ORG link : CVE-2005-2259


JSON object : View

Products Affected

usanet_creations

  • makebid_auction_standard
  • makebid_auction_deluxe
  • domain_name_auction
  • standard_classified_ads
  • makebid_reverse_auction
  • usanet_shopping_mall