CVE-2005-1966 Information

Description

The eTrace_validaddr function in eTrace plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the etrace_host parameter.

Reference

http://marc.info/?l=bugtraq&m=111868460811287&w=2 http://www.securityfocus.com/bid/13934