CVE-2010-0418 Information

Description

The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a request.

Reference

http://secunia.com/advisories/38972 http://www.awe.com/mark/blog/20100305.html http://www.chumby.com/pages/release10mar