Arbitrary Command Execution in Virtual Edge Netquery 3.11 via nquser.php

Arbitrary Command Execution in Virtual Edge Netquery 3.11 via nquser.php

CVE-2005-2684 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

nquser.php in Virtual Edge Netquery 3.11 allows remote attackers to execute arbitrary commands via shell metacharacters in the host parameter to a dig query.

Learn more about our User Device Pen Test.