CVE-1999-1180 Information

Description

O’Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.

Reference

http://oliver.efri.hr/~crv/security/bugs/NT/buffer.html http://www.tryc.on.ca/archives/bugtraq/1999_1/0612.html