virus logo Intrusion Prevention

MiniDVBLinux.Command.Injection

description-logoDescription

This indicates an attack attempt to exploit a Command Injection vulnerability in MiniDVBLinux 5.4.
The vulnerability is due to improper validation of user-supplied parameters. A remote attacker can exploit this to execute arbitrary commands via a crafted request.

affected-products-logoAffected Products

MiniDVBLinux 5.4 and prior

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary commands with root privileges.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2023-02-01 22.487
Modified
 Default_action:pass:drop
2023-01-18 22.479
New

References

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5717.php
ID 52454
Created Dec 28, 2022
Updated Jan 31, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action drop
Active
Affected OS Linux
Affected App Other
Profile Type OS Command Injection