CVE-2005-4699

Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "–" style options in the q_Host parameter.

Date published : 2006-02-01

http://kimihia.org.nz/projects/tellme/files/tellme-1.2-1.3.diff

http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0107.html