source: wwwsecurityfocuscom/bid/14682/info
Looking Glass may be exploited to execute arbitrary commands
An attacker can prefix arbitrary commands with the '|' character, supply them through a URI parameter and have them executed in the context of the server
This can facilitate unauthorized remote access
<?php
/* 905 27/08/2005 ...