CVE-2002-0904 Information

Description

SayText function in Kismet 2.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters (backtick or pipe) in the essid argument.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-05/0259.html http://marc.info/?l=vuln-dev&m=102269718506080&w=2 http://www.iss.net/security_center/static/9213.php http://www.kismetwireless.net/CHANGELOG http://www.securityfocus.com/bid/4883