Arbitrary Command Execution Vulnerability in Bcfg2 Server

Arbitrary Command Execution Vulnerability in Bcfg2 Server

CVE-2011-3211 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The server in Bcfg2 1.1.2 and earlier, and 1.2 prerelease, allows remote attackers to execute arbitrary commands via shell metacharacters in data received from a client.

Learn more about our Cis Benchmark Audit For Server Software.