osc -- shell command injection via crafted _service files

2015-03-16T00:00:00
ID F450587B-D7BD-11E4-B5A4-14DAE9D5A9D2
Type freebsd
Reporter FreeBSD
Modified 2015-03-16T00:00:00

Description

SUSE Security Update reports:

osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters in a _service file.