Xdg-utils 1.0.2 and previous versions allows user-assisted remote malicious users to execute arbitrary commands via shell metacharacters in a URL argument to (1) xdg-open or (2) xdg-email.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gentoo xdg-utils |