CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x prior to 2.5.10 and 2.4.x prior to 2.4.18 allows local users to execute arbitrary commands via carriage returns in a filename.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fvwm fvwm |