CVE-2008-0892
Red Hat Directory Server 8.0 EL4 and EL5 - Remote Code Execution via Replication Monitor CGI Script
Title source: llmDescription
The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.
References (13)
Core 13
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41840
Third Party Advisory vendor-advisory
x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html
Broken Link vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/30114
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1019856
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/28802
Broken Link vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0201.html
Third Party Advisory vendor-advisory
x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html
Broken Link vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1449/references
Broken Link vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0199.html
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29761
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29826
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=437301
Scores
EPSS
0.1402
EPSS Percentile
96.1%
Details
CWE
CWE-20
Status
published
Products (3)
redhat/directory_server
7.1
redhat/directory_server
8 el4 (2 CPE variants)
redhat/fedora_directory_server
Published
Apr 16, 2008
Tracked Since
Feb 18, 2026