Vulnerabilities > Debian > UNP

DATE	CVE	VULNERABILITY TITLE	RISK
2008-01-03	CVE-2007-6610	Remote Arbitrary Shell Command Injection vulnerability in Debian UNP 1.0.12 unp 1.0.12, and other versions before 1.0.14, does not properly escape file names, which might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename argument. network low complexity debian critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.