Remote Code Execution Vulnerability in ZeroShell by Zerovm
CVE-2009-0545

Currently unrated

Key Information:

Vendor

Zeroshell

Status
Zeroshell
Vendor
CVE Published:
12 February 2009

What is CVE-2009-0545?

The vulnerability in ZeroShell allows remote attackers to execute arbitrary commands through improperly handled shell metacharacters in the type parameter of a NoAuthREQ x509List action. This flaw is particularly dangerous as it enables malicious actors to gain unauthorized access to the underlying system, potentially leading to severe consequences for system integrity and confidentiality. Users of ZeroShell versions prior to 1.0beta12 are advised to upgrade to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/500763/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.zeroshell.net/eng/announcements/
x_refsource_MISC
https://www.exploit-db.com/exploits/8023
exploitx_refsource_EXPLOIT-DB

EPSS Score

94% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.