The papd daemon in Netatalk before 2.0.4-beta2, when using certain variables in a pipe command for the print file, allows remote attackers to execute arbitrary commands via shell metacharacters in a print request, as demonstrated using a crafted Title.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-12-26T17:08:00
Updated: 2009-01-22T10:00:00
Reserved: 2008-12-26T00:00:00
Link: CVE-2008-5718
JSON object: View
NVD Information
Status : Analyzed
Published: 2008-12-26T17:30:00.453
Modified: 2009-04-02T04:00:00.000
Link: CVE-2008-5718
JSON object: View
Redhat Information
No data.
CWE