Arbitrary Command Execution Vulnerability in DS3 Authentication Server

Arbitrary Command Execution Vulnerability in DS3 Authentication Server

CVE-2013-4096 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server allows remote authenticated users to execute arbitrary commands via shell metacharacters in the HOST_NAME field.

Learn more about our User Device Pen Test.