CVE-2013-6719 Information

Description

delivery.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x 8.x through 8.6 8.7 before FP2 and 8.8 before FP2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the testconn_host parameter.

Reference

http://www.exploit-db.com/exploits/32546 https://exchange.xforce.ibmcloud.com/vulnerabilities/89228 https://tealeaf.support.ibmcloud.com/FileManagement/Download/19eb90ffb8334b398684b4350edc4b7a