Описание
Disputed: OS Command injection in github.com/kardianos/service
service_windows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory.
The validity of this vulnerability has been questioned and the reporter has requested that the CVE be disputed.
Пакеты
github.com/kardianos/service
<= 1.2.1
Отсутствует
Связанные уязвимости
service_windows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory. NOTE: this finding could not be reproduced by its original reporter or by others.
service_windows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory. NOTE: this finding could not be reproduced by its original reporter or by others.
service_windows.go in the kardianos service package for Go omits quoti ...