shiela:arbitrary code execution
| Package(s): | shiela | CVE #(s): | CVE-2006-3633 | ||||
| Created: | July 25, 2006 | Updated: | July 26, 2006 | ||||
| Description: | Brian Caswell discovered vulnerabilities in OSSP Shiela, a CVS repository access control and logging extension. The vulnerabilities allow arbitrary code execution during CVS file commits if a filename is specially crafted to contain shell commands. | ||||||
| Alerts: |
| ||||||