Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2014-7817
Description:The wordexp function in GNU C Library (aka glibc) 2.21 does not enforce the WRDE_NOCMD flag, which allows context-dependent attackers to execute arbitrary commands, as demonstrated by input containing "$((`...`))".
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-7817
BugTraq ID: 71216
Debian Security Information: DSA-3142 (Google Search)
RedHat Security Advisories: RHSA-2014:2023
SuSE Security Announcement: openSUSE-SU-2015:0351 (Google Search)
XForce ISS Database: gnu-glibc-cve20147817-command-exec(98852)

© 1998-2021 E-Soft Inc. All rights reserved.