CVE-2005-2259
First published: Wed Jul 13 2005(Updated: )
The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Usanet Creations Makebid Auction Standard | ||
| Usanet Creations Makebid Reverse Auction | ||
| Usanet Creations Makebid Auction Deluxe | =3.30 | |
| Usanet Creations Standard Classified Ads | ||
| Usanet Creations Usanet Shopping Mall | ||
| Usanet Creations Domain Name Auction | ||
| Usanet Creations Makebid Auction Deluxe |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/usanet creations
- canonical/usanet creations makebid auction standard
- canonical/usanet creations makebid reverse auction
- canonical/usanet creations makebid auction deluxe
- version/usanet creations makebid auction deluxe/3.30
- canonical/usanet creations standard classified ads
- canonical/usanet creations usanet shopping mall
- canonical/usanet creations domain name auction