Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-1456

CVE-2004-1456

Description

filediff in CVStrac allows remote attackers to execute arbitrary commands via shell metacharacters in rcsinfo.

Affected products

4

Cvstrac/Cvstrac4 versions
cpe:2.3:a:cvstrac:cvstrac:1.1:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:cvstrac:cvstrac:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

secunia.com/advisories/12090/nvdPatch
www.cvstrac.org/cvstrac/chngviewnvdPatch
www.cvstrac.org/cvstrac/tktviewnvdExploit
www.osvdb.org/8373nvdExploit
www.securityfocus.com/bid/10878nvdExploit
www.kb.cert.org/vuls/id/770816nvdThird Party AdvisoryUS Government Resource
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/16929nvd

News mentions

0

No linked articles in our index yet.