[23721] in bugtraq
Re: Pine 4.33 (at least) URL handler allows embedded commands.
daemon@ATHENA.MIT.EDU (Michal Zalewski)
Mon Jan 7 03:06:02 2002
Date: Sun, 6 Jan 2002 17:37:43 -0500 (EST)
From: Michal Zalewski <lcamtuf@coredump.cx>
To: zen-parse <zen-parse@gmx.net>
Cc: bugtraq@securityfocus.com
In-Reply-To: <Pine.LNX.4.33.0201051514170.25654-100000@clarity.local>
Message-ID: <Pine.LNX.4.42.0201061733250.3881-100000@nimue.bos.bindview.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Sat, 5 Jan 2002, zen-parse wrote:
> Problem: URL handler allows embedded commands.
> May allow email viruses of the Outlook kind.
> http://address/'&/some/program${IFS}with${IFS}arguments&'
Isn't that old news? http://www.securityfocus.com/bid/810
I *can* be wrong, but it looks like it is the same problem...
--
_____________________________________________________
Michal Zalewski [lcamtuf@bos.bindview.com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=
http://lcamtuf.coredump.cx/photo/
