CVE-2008-6816

N/A Unknown

Published: May 28, 2009 Modified: April 23, 2026

Description

Eaton MGEOPS Network Shutdown Module before 3.10 Build 13 allows remote attackers to execute arbitrary code by adding a custom action to the MGE frontend via pane_actionbutton.php, and then executing this action via exec_action.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://download.mgeops.com/install/win32/nsm/release_note_nsm_320.txt

Source: cve@mitre.org

http://osvdb.org/50051

Source: cve@mitre.org

http://secunia.com/advisories/32456

Source: cve@mitre.org

Vendor Advisory

http://www.nruns.com/security_advisory_eaton_mge_ops_network_shutdown_module_authentication_bypass.php

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/497824/100/100/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/31933

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/46131

Source: cve@mitre.org

http://download.mgeops.com/install/win32/nsm/release_note_nsm_320.txt