CVE-2008-6556 Information

Description

cgi-bin/webutil.pl in The Puppet Master WebUtil 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the whois command.

Reference

http://osvdb.org/51181 http://www.securityfocus.com/archive/1/489961/100/0/threaded http://www.securityfocus.com/bid/28393 https://exchange.xforce.ibmcloud.com/vulnerabilities/41400 https://exchange.xforce.ibmcloud.com/vulnerabilities/49820