V-creator Remote Shell Code Execution Vulnerability

The v-creator application is prone to a remote shell code-execution vulnerability.

This issue allows attackers to execute arbitrary shell commands with the privileges of the webserver process. This may help the attacker compromise the application and the underlying system; other attacks are also possible.

Versions 1.3-pre2 and prior of v-creator are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus