UniOPC IP*Works! SSL Remote Code Execution Vulnerability

UniOPC is prone to a remote code-execution vulnerability because it fails to properly sanitize input from a third-party plugin.

An attacker may leverage this issue to execute arbitrary code on a system running an affected version of the vulnerable product; failed attacks may cause denial-of-service conditions.

UniOPC prior to 2.0.0 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus