header-logo
Suggest Exploit
vendor:
Freemotion.Gate
by:
SecurityFocus
8,8
CVSS
HIGH
Remote Command Execution
78
CWE
Product Name: Freemotion.Gate
Affected Version From: 4.1.3.5
Affected Version To: 4.1.3.5
Patch Exists: YES
Related CWE: N/A
CPE: o:skidata:freemotion.gate:4.1.3.5
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2013

SKIDATA Freemotion.Gate Multiple Remote Command-Execution Vulnerabilities

SKIDATA Freemotion.Gate is prone to multiple remote command-execution vulnerabilities. Attackers can exploit these issues to execute arbitrary commands in the context of the affected system by sending a specially crafted POST request containing a malicious XML payload to the vulnerable server.

Mitigation:

Upgrade to the latest version of SKIDATA Freemotion.Gate.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/63805/info

SKIDATA Freemotion.Gate is prone to multiple remote command-execution vulnerabilities.

Attackers can exploit these issues to execute arbitrary commands in the context of the affected system.

SKIDATA Freemotion.Gate 4.1.3.5 is vulnerable; other versions may also be affected. 

curl -X POST --header "Content-Type:text/xml" --data-binary @manual-release.raw http://www.example.com:7777/skidata/hessian/CP > /dev/null 2>&1

Navigation

Suggest Exploit

Services By CQR