Описание
cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.28 (включая)
cpe:2.3:a:gert_doering:mgetty:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00904
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
около 22 лет назад
cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printa ...
github
больше 3 лет назад
cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.
EPSS
Процентиль: 75%
0.00904
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other