Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server allows remote authenticated users to execute arbitrary commands via shell metacharacters in the HOST_NAME field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DS3 Authentication Server ServerAdmin/TestTelnetConnection.jsp 命令执行漏洞
Vulnerability Description
DS3 Authentication Server是新加坡Data Security Systems Solutions公司的一套身份验证解决方案。该解决方案提供端到端加密的多元素身份验证等功能。 DS3 Authentication Server中的ServerAdmin/TestTelnetConnection.jsp中存在命令执行漏洞,该漏洞源于TestTelnetConnection.jsp没有验证用户的输入。远程经过授权的攻击者可通过HOST_NAME字段中的shell元字符利用该漏洞执行任意命
CVSS Information
N/A
Vulnerability Type
N/A