CVE-2006-2237

Published: 08 May 2006

The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter.

Priority

Unknown

Status

Package Release Status
awstats
Launchpad, Ubuntu, Debian
Upstream Needs triage