SecuritySpace - CVE-2013-4878

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2013-4878

Description: The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2012-1823.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-4878
CERT/CC vulnerability note: VU#673343
http://www.kb.cert.org/vuls/id/673343
http://seclists.org/fulldisclosure/2013/Jun/21

CVE ID:	CVE-2013-4878
Description:	The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2012-1823.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4878 CERT/CC vulnerability note: VU#673343 http://www.kb.cert.org/vuls/id/673343 http://seclists.org/fulldisclosure/2013/Jun/21