CVE-2009-2261 Information

Description

PeaZIP 2.6.1 2.5.1 and earlier on Windows allows user-assisted remote attackers to execute arbitrary commands via a .zip archive with a .txt file whose name contains | (pipe) characters and a command.

Reference

http://www.exploit-db.com/exploits/8881