Arbitrary Code Execution via Serialized Data in Revive Adserver Cookies

Arbitrary Code Execution via Serialized Data in Revive Adserver Cookies

CVE-2017-5830 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Revive Adserver before 4.0.1 allows remote attackers to execute arbitrary code via serialized data in the cookies related to the delivery scripts.

Learn more about our Cis Benchmark Audit For Server Software.