Command Injection Vulnerability in mathTeX Software by Ockham's Razor Solutions
CVE-2009-1383

Currently unrated

Key Information:

Vendor

Forkosh

Status
Mathtex
Vendor
CVE Published:
14 July 2009

What is CVE-2009-1383?

A vulnerability in the mathTeX tool allows remote attackers to exploit the getdirective function in mathtex.cgi to execute arbitrary commands. This is achieved by injecting shell metacharacters through the dpi tag, posing a significant risk to systems running versions of mathTeX prior to July 13, 2009. Users are advised to upgrade to patched versions to mitigate this security concern.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2009/1875
vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/archive/1/504919/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://secunia.com/advisories/35816
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.