CVE-2008-1381

N/A Unknown

Published: May 01, 2008 Modified: April 23, 2026

Description

ZoneMinder before 1.23.3 allows remote authenticated users, and possibly unauthenticated attackers in some installations, to execute arbitrary commands via shell metacharacters in a crafted URL.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/29995

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/30189

Source: secalert@redhat.com

http://www.awe.com/mark/blog/200804272230.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/28968

Source: secalert@redhat.com

http://www.zoneminder.com/wiki/index.php/Change_History#Release_1.23.3

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/42046

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00078.html

Source: secalert@redhat.com

https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00085.html

Source: secalert@redhat.com

http://secunia.com/advisories/29995