Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-1568

EPSS 0.91% · P76
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-1568

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
comix 3.6.4 allows attackers to execute arbitrary commands via a filename containing shell metacharacters that are not properly sanitized when executing the rar, unrar, or jpegtran programs.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Comix 'filename' 远程指令执行漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
comix 3.6.4允许攻击者借助一个包含外壳元字符的文件名,执行任意指令。当运行rar,unrar,或jpegtran程序时,这些外壳后缀字符未被合适的净化掉。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-1568

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-1568

Please Login to view more intelligence information

Same Patch Batch · n/a · 2008-03-31 · 37 CVEs total

CVE-2008-1551RunCMS 'viewcat.php' SQL注入漏洞
CVE-2008-1566ManageEngine Applications Manager 'Search.do' 跨站脚本攻击漏洞
CVE-2008-1567phpMyAdmin Session文件本地信息泄露漏洞
CVE-2008-1569policyd-weight socket不安全临时文件创建漏洞
CVE-2008-1570Policyd-weight create_lockpath函数 竞争条件错误漏洞
CVE-2008-0070Orb Networks Orb RPC请求远程整数溢出漏洞
CVE-2008-1548Aeries Browser Interface 多个跨站脚本攻击漏洞
CVE-2008-1549Aeries Browser Interface 多个SQL注入漏洞
CVE-2008-1550CubeCart index.php多个跨站脚本攻击漏洞
CVE-2008-1565phpBB PJIRC Module 'irc.php' 目录遍历漏洞
CVE-2008-1552SILC客户端及服务器密钥协商远程整数溢出漏洞
CVE-2008-1553TopperMod 'mod.php' 目录遍历漏洞
CVE-2008-1554TopperMod 'localita'参数 SQL注入漏洞
CVE-2008-1555BolinOS 'gbincluder.php' 目录遍历漏洞
CVE-2008-1556BolinOS 多个跨站脚本攻击漏洞
CVE-2008-1557BolinOS 'gBphpInfo.php' 信息泄露漏洞
CVE-2008-1558MPlayer 'sdpplin.c' sdpplin_parse()函数 整数溢出漏洞
CVE-2008-1559Joomla!Mambo Alphacontent 组件 'id'参数 SQL注入漏洞
CVE-2008-1598IBM AIX 内核ProbeVue特权铭感信息泄露漏洞
CVE-2008-0706HP Compaq Notebook PC BIOS 未明本地未授权访问漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-1568

No comments yet

Leave a comment