LPAR2RRD CVE-2014-4982 Unspecified Command Injection Vulnerability

LPAR2RRD is prone to an unspecified command-injection vulnerability because it fails to adequately sanitize user-supplied input.

Attackers can exploit this issue to execute arbitrary commands in context of the application Successful exploits could compromise the application and possibly the underlying system.

Note: Few technical details of the issue are available. We will update this BID as more information emerges.

LPAR2RRD 4.53 and earlier versions are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus