CVE-2014-2528

2014-08-26T10:55:05
ID CVE-2014-2528
Type cve
Reporter NVD
Modified 2014-08-27T11:24:16

Description

kcleanup.cpp in KDirStat 2.7.3 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a ' (single quote) character in the directory name, a different vulnerability than CVE-2014-2527.