7 lines
No EOL
462 B
Text
7 lines
No EOL
462 B
Text
source: http://www.securityfocus.com/bid/9922/info
|
|
|
|
It has been reported that the FVWM fvwm_make_browse_menu.sh script is prone to a command execution vulnerability. This issue is due to the script allowing a user to define which application should be used to execute the file via its filename.
|
|
|
|
An attacker may be able to leverage this issue to cause arbitrary commands to be executed with the privileges of a victim user.
|
|
|
|
$ touch 'Exec xmessage "0wn3d"' |