CVE-2003-0516

EPSS 0.90%

發布日:2003/8/18修改日:2026/4/28

也稱為:DEBIAN-CVE-2003-0516

描述

cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.

受影響套件(1)

Debian/mgettyfrom 0, < 1.1.29

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0516