foomatic-gui python-foomatic 0.7.9.4 - pysmb.py Arbitrary Shell Command Execution

2011-08-03T00:00:00
ID EXPLOITPACK:F2604B5253687E5EC8EBD8D7C5DAA366
Type exploitpack
Reporter daveb
Modified 2011-08-03T00:00:00

Description

foomatic-gui python-foomatic 0.7.9.4 - pysmb.py Arbitrary Shell Command Execution

                                        
                                            source: https://www.securityfocus.com/bid/48982/info

foomatic-gui is prone to a remote arbitrary shell-command-execution vulnerability because the application fails to properly sanitize user-supplied input.

An attacker can exploit this issue to execute arbitrary shell commands in the context of the application.

Versions prior to foomatic-gui 0.7.9.5 are vulnerable. 

netbios name = oh'notquotezSIF to /etc/samba/smb.conf