Sendpage.pl allows remote attackers to execute arbitrary commands via a message containing shell metacharacters.