Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows malicious users to execute arbitrary commands via shell metacharacters in an unspecified FileUtils function call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell suse studio onsite 1.1 |
||
marcus schafer kiwi |