Описание
The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.
Комментарий
http://www.openwall.com/lists/oss-security/2008/09/01/4
"The previous version allowed to execute arbitrary code by a crafted feed URL that is passed as a command line parameter if the URL is opened by an external browser."
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одно из
EPSS
6.8 Medium
CVSS2
Дефекты
Связанные уязвимости
The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.
The open-in-browser command in newsbeuter before 1.1 allows remote att ...
The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.
EPSS
6.8 Medium
CVSS2