NuytsTech Security

CVE-2014-8990

by ·

default-rsyncssh.lua in Lsyncd 2.1.5 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a filename.

Date published : 2014-12-05

http://www.securityfocus.com/bid/71179

https://github.com/axkibe/lsyncd/commit/18f02ad013b41a72753912155ae2ba72f2a53e52

Tags: