Sophos Web Protection Appliance CVE-2013-4984 Local Command Injection Vulnerability

Sophos Web Protection Appliance is prone to a local command-injection vulnerability.

A local attacker may exploit this to execute arbitrary commands with root privileges. Successful exploits will result in the complete compromise of affected computers.

Versions prior to Web Protection Appliance 3.7.9.1 and 3.8.1.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus