[14079] in bugtraq
Re: EZ Shopper 3.0 shopping cart CGI remote command execution
daemon@ATHENA.MIT.EDU (Alex Heiphetz)
Tue Feb 29 19:32:00 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <3.0.6.32.20000228124308.008ea190@cvzoom.net>
Date: Mon, 28 Feb 2000 12:43:08 -0500
Reply-To: Alex Heiphetz <ahg@CVZOOM.NET>
From: Alex Heiphetz <ahg@CVZOOM.NET>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200002270932.UAA19852@jawa.chilli.net.au>
At 09:42 AM 2/27/00 +0000, suid@SUID.KG wrote:
>suid@suid.kg - EZ Shopper 3.0 remote command execution.
<...>
>Workaround:
>
> The vendor, AHG Inc, has released a fixed version, download it from
> their website and install the fixed version.
Correction: clients are notified and patch is being sent via e-mail.
Help with installation offered.
Regards,
AH
