fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters.
References
Configurations
History
No history.
Information
Published : 2001-06-27 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2001-0370
Mitre link : CVE-2001-0370
CVE.ORG link : CVE-2001-0370
JSON object : View
Products Affected
michael_a._gumienny
- fcheck
CWE