CVE-2008-0892

Red Hat Directory Server 8.0 EL4 and EL5 - Remote Code Execution via Replication Monitor CGI Script

Title source: llm
STIX 2.1

Description

The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.

References (13)

Core 13
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41840
Third Party Advisory vendor-advisory x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30114
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1019856
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28802
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0201.html
Third Party Advisory vendor-advisory x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1449/references
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0199.html
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29761
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29826
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=437301

Scores

EPSS 0.1402
EPSS Percentile 96.1%

Details

CWE
CWE-20
Status published
Products (3)
redhat/directory_server 7.1
redhat/directory_server 8 el4 (2 CPE variants)
redhat/fedora_directory_server
Published Apr 16, 2008
Tracked Since Feb 18, 2026