CVE-2007-5926 Information

Description

OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup (2) OEMLicenseInstall and possibly other stored procedures.

Reference

http://secunia.com/advisories/27525 http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt http://www.securityfocus.com/bid/26347 https://exchange.xforce.ibmcloud.com/vulnerabilities/38291