CVE-2008-3907

Опубликовано: 04 сент. 2008

Источник: debian

Описание

The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.

Пакет	Статус	Версия исправления	Релиз	Тип
newsbeuter	fixed	0.9.1-1+lenny3	lenny	package
newsbeuter	fixed	1.2-1		package

medium as versions < 1.0-1 didn't include a patch to wrap long article URLs so the
crafted part of the URL can be hidden. This of course only affects people not reading
articles in the built-in reader.

CVE-2008-3907

ubuntu

больше 17 лет назад

The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.

CVE-2008-3907

nvd

больше 17 лет назад

The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.

GHSA-c24p-p34c-x969

github

почти 4 года назад

The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.