[7513] in bugtraq
PATCH: faxsurvey
daemon@ATHENA.MIT.EDU (Tom)
Tue Aug 4 12:41:47 1998
Date: Tue, 4 Aug 1998 07:43:42 -0700
Reply-To: dod@muenster.net
From: Tom <dod@MUENSTER.NET>
To: BUGTRAQ@NETSPACE.ORG
Hi.
Here comes the patch for the 'faxsurvey' cgi-script.
The problem is the quotation marks for the 'eval' command.
Will they ever learn?
Don't forget to remove/chown 'faxsurvey.orig' after patching.
Cheers
Tom
--- faxsurvey.orig Mon Dec 1 01:05:47 1997
+++ faxsurvey Fri Jul 31 11:59:21 1998
@@ -44,7 +44,7 @@
#
# Be careful here.
#
-eval `$ECHO "$QUERY_STRING" | $UNQUOTE -qn | $SED 's/PATH=[^;]*;//g'`
+eval "ECHO "$QUERY_STRING" | $UNQUOTE -qn | $SED 's/PATH=[^;]*;//g'"
echoMail()
{
[EOM]
