← Back

CVE-2005-2259

nvd nist
Published: Jul 13, 2005Modified: Apr 16, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.

Affected (7)

Usanet Creations
6 products
Domain Name Auction
Makebid Auction Deluxe
Makebid Auction Standard
Makebid Reverse Auction
Standard Classified Ads
Usanet Shopping Mall
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Domain Name Auction
All versions
Usanet Creations
Makebid Auction Deluxe
All versions
Makebid Auction Deluxe
Version 3.30
Makebid Auction Standard
All versions
Makebid Reverse Auction
All versions
Standard Classified Ads
All versions
Usanet Shopping Mall
All versions

References (6)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.