Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 before 210/091.001, OXO600 before 610/014.001, and other versions, allows remote attackers to execute arbitrary commands and "obtain OXO resources" via shell metacharacters in the id2 parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OmniPCX Office 输入验证错误漏洞
Vulnerability Description
阿尔卡特的OmniPCX Office是一套为中小型企业设计的统一通信解决方案。 OmniPCX Office 210及之后版本(210/091.001版本已修复)和600及之后版本(610/014.001版本已修复)(带有Internet Access服务)中的cgi-data/FastJSData.cgi文件存在输入验证错误漏洞。远程攻击者可借助‘id2’参数中的shell元字符利用该漏洞执行任意命令并获取OXO资源。
CVSS Information
N/A
Vulnerability Type
N/A