CVE-2008-5718

EPSS 1.8%

netatalk - remote code execution

發布日:2008/12/26修改日:2026/4/28

也稱為:DEBIAN-CVE-2008-5718

描述

The papd daemon in Netatalk before 2.0.4-beta2, when using certain variables in a pipe command for the print file, allows remote attackers to execute arbitrary commands via shell metacharacters in a print request, as demonstrated using a crafted Title.

受影響套件(3)

Debian/netatalkfrom 0, < 2.0.4~beta2-1
Debian/netatalkfrom 0, < 2.0.3-4+etch1
Debian/netatalkfrom 0, < 2.0.3-11+lenny1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5718