Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote malicious users to execute arbitrary commands via a malformed URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
university of washington pine 4.21 |
||
university of washington pine 4.20 |