'unp' File Name Remote Arbitrary Shell Command Injection Vulnerability

Bugtraq ID: 27182
Class: Input Validation Error
CVE: CVE-2007-6610
Remote: Yes
Local: No
Published: Dec 25 2007 12:00AM
Updated: Jan 10 2008 07:49PM
Credit: Erich Schubert is credited with the discovery of this issue.
Vulnerable: unp unp 1.0.12
Gentoo Linux
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Not Vulnerable: unp unp 1.0.14
unp unp 1.0.13


 

Privacy Statement
Copyright 2010, SecurityFocus