CVE-2005-1045

Published: Apr 12, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

OpenText FirstClass 8.0 client does not properly sanitize strings before passing them to the Windows ShellExecute API, which allows remote attackers to execute arbitrary commands via a UNC path in a bookmark.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

15356

vdb-entry

x_refsource_OSVDB

13079

vdb-entry

x_refsource_BID

1013665

vdb-entry

x_refsource_SECTRACK

14898

third-party-advisory

x_refsource_SECUNIA

20050408 OpenText FirstClass 8.0 Client Arbitrary File Execution

mailing-list

x_refsource_BUGTRAQ

firstclass-bookmark-command-execution(20032)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-1045

Description

Affected Products

References