URL-handling code in Pine 4.43 and previous versions allows remote malicious users to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
university of washington pine 4.20 |
||
university of washington pine 4.21 |
||
university of washington pine 4.30 |
||
university of washington pine 4.33 |