CVE-2002-0306 Information

Description

ans.pl in Avenger’s News System (ANS) 2.11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the p (plugin) parameter.

Reference

http://marc.info/?l=bugtraq&m=101430868616112&w=2 http://www.securityfocus.com/bid/4149