Prodder 0.4 Arbitrary Shell Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18068/info Prodder is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute...

rt-sa-2006-002.txt

Advisory: Prodder Remote Arbitrary Command Execution RedTeam identified a security flaw in prodder which makes it possible for a malicious podcast server to execute arbitrary shell commands on the victim's client. Details ======= Product: Prodder Affected Versions: All versions up to prodder-0.4...

Code injection

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast url attribute of an enclosure tag, or $encurl variable, which is executed when running wget...

CVE-2006-2548

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast url attribute of an enclosure tag, or $encurl variable, which is executed when running wget...

CVE-2006-2548

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast url attribute of an enclosure tag, or $encurl variable, which is executed when running wget...

CVE-2006-2548

CVE-2006-2548 concerns Prodder before 0.5 and perlpodder before 0.5. The vulnerability arises from shell metacharacters in the podcast URL (url attribute of an enclosure tag, or $enc_url) that are executed when wget runs, allowing remote code execution. Exploitation details in the connected docum...

Prodder Remote Arbitrary Command Execution

Advisory: Prodder Remote Arbitrary Command Execution RedTeam identified a security flaw in prodder which makes it possible for a malicious podcast server to execute arbitrary shell commands on the victim's client. Details ======= Product: Prodder Affected Versions: All versions up to prodder-0.4...

Prodder 0.4 - Arbitrary Shell Command Execution

Prodder 0.4 - Arbitrary Shell Command Execution source: https://www.securityfocus.com/bid/18068/info Prodder is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to...

Prodder 0.4 - Arbitrary Shell Command Execution

source: https://www.securityfocus.com/bid/18068/info Prodder is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary shell commands on the vulnerab...