2
Candidate: CVE-2006-2644
4
https://usn.ubuntu.com/usn/usn-290-1
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2644
7
AWStats 6.5, and possibly other versions, allows remote authenticated users
8
to execute arbitrary code by using the configdir parameter to awstats.pl to
9
upload a configuration file whose name contains shell metacharacters, then
10
access that file using the LogFile directive.
15
dapper_awstats: released (6.5-1ubuntu1.2)
16
edgy_awstats: not-affected
17
feisty_awstats: not-affected
18
devel_awstats: not-affected