2 matches found
📄 FreeBSD rtsold 15.x Remote Code Execution
rtsold8 on FreeBSD processes IPv6 Router Advertisement DNSSL options without validating domain names for shell metacharacters. The decoded domains are passed to resolvconf8, a shell script that uses unquoted variable expansion, enabling command injection via substitution. Exploit Title: FreeBSD...
Exploit for CVE-2025-14558
CVE-2025-14558 FreeBSD rtsold DNSSL Command Injection RCE...