2 matches found
CVE-2008-6793
The getfiletype function in lib/filecontent.php in DFLabs PTK 0.1, 0.2, and 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters after an arg1= sequence in a filename within a forensic image...
CVE-2008-6793
The CVE-2008-6793 entry describes a remote code execution flaw in DFLabs PTK (versions 0.1, 0.2, 1.0) related to get_file_type in lib/file_content.php. The underlying issue is that a filename within a forensic image can include a crafted arg1= sequence with shell metacharacters, allowing an attac...