Gerardo GANIS

2 exploits Active since Nov 2017
CVE-2017-1000215 WRITEUP CRITICAL WRITEUP
ROOT xrootd <4.6.0 - Command Injection
ROOT xrootd version 4.6.0 and below is vulnerable to an unauthenticated shell command injection resulting in remote code execution
CVSS 9.8
CVE-2017-1000203 WRITEUP HIGH WRITEUP
ROOT < 6.9.03 - Authenticated Remote Code Execution via Shell Metacharacter Injection in rootd Daemon
ROOT version 6.9.03 and below is vulnerable to an authenticated shell metacharacter injection in the rootd daemon resulting in remote code execution
CVSS 8.8