Arbitrary Program Execution Vulnerability in Impero Education Pro

Arbitrary Program Execution Vulnerability in Impero Education Pro

CVE-2015-5998 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Impero Education Pro before 5105 relies on the -1|AUTHENTICATE\x02PASSWORD string for authentication, which allows remote attackers to execute arbitrary programs via an encrypted command.

Learn more about our Web Application Penetration Testing UK.