Arbitrary Command Execution in Tadasoft Restorepoint 3.2 Evaluation Image

Arbitrary Command Execution in Tadasoft Restorepoint 3.2 Evaluation Image

CVE-2011-4201 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

remote_support.cgi in the Tadasoft Restorepoint 3.2 evaluation image allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) pid1 or (2) pid2 parameter in a stop_remote_support action.

Learn more about our Web Application Penetration Testing UK.