CVE-2002-0434 Information

Description

Marcus S. Xenakis directory.php script allows remote attackers to execute arbitrary commands via shell metacharacters in the dir parameter.

Reference

http://www.iss.net/security_center/static/8440.php http://www.securityfocus.com/archive/1/261512 http://www.securityfocus.com/bid/4278