1. Home
  2. CVEs with statements.statement==The CVE description for this bug is incorrect. The backported patch for CVE-2007-2447 missed the character ā€™cā€™ in the shell escaping whitelist of allowed characters, therefore not allowing commands with a ā€™cā€™ in them to be executed. This is therefore a regression bug and not a security vulnerability.
Max CVSS 5.0 Min CVSS 5.0 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2007-4044 5.0
** REJECT ** The MS-RPC functionality in smbd in Samba 3 on SUSE Linux before 20070720 does not include "one character in the shell escape handling." NOTE: this issue was originally characterized as a shell metacharacter issue due to an incomplete
11-09-2008 - 00:57 27-07-2007 - 22:30
Back to Top Mark selected
Back to Top