The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain parameter to end-user/index.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-09-10T10:00:00Z

Updated: 2024-09-17T03:02:50.133Z

Reserved: 2013-07-29T00:00:00Z

Link: CVE-2013-4983

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2013-09-10T11:28:40.997

Modified: 2013-10-09T14:51:56.963

Link: CVE-2013-4983

cve-icon Redhat

No data.