CVE-2006-5925

Description

Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.

Affected packages (5)

• Debian/elinksfrom 0, < 0.11.1-1.2
• Debian/elinksfrom 0, < 0.10.4-7.1
• Debian/linksfrom 0, < 0.99+1.00pre12-1sarge1
• Debian/links2from 0, < 2.1pre25-2
• Debian/links2from 0, < 2.1pre16-1sarge1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-5925