RSS   Vulnerabilities for 'Ohcount'   RSS

2017-11-22
 
CVE-2017-16926

CWE-78
 

 
Ohcount 3.0.0 is prone to a command injection via specially crafted filenames containing shell metacharacters, which can be exploited by an attacker (providing a source tree for Ohcount processing) to execute arbitrary code as the user running Ohcount.

 


Copyright 2024, cxsecurity.com

 

Back to Top