Re: [Omail-devel] [Fwd: remote root exec vulnerability in omail]
Brought to you by:
swix
Menu
▾
▴
Re: [Omail-devel] [Fwd: remote root exec vulnerability in omail]
|
From: Mikkel H. O. <sf...@sy...> - 2004-05-07 18:17:49
|
On Fri, May 07, 2004 at 05:02:54PM +0200, Olivier Mueller wrote: > FYI, a patch would be required, but I have absolutely no time > to work on that the next hours. Carter, would you have some? > > fix it by replacing the regex around line 411 to something like > $password = quotemeta($password); It seems like this is not the best way to fix the problem, since all users with special characters in their password will no longer be able to log in. Another fix is to change the call to echo and vauthenticate arround line 690, by replasing the two " with \'. But this still allows one to include things as $(touch /tmp/test), although it will now need to be in single quotes as well. But perhaps this could be combined with removing '-characters from the password. -- Mikkel Holm Olsen AKA Spaceman Spiff Denmark Spring is God's way of saying, One more time! |