CVE-2003-0516

2003-08-18T04:00:00
ID CVE-2003-0516
Type cve
Reporter cve@mitre.org
Modified 2008-09-10T19:19:00

Description

cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.