Command Execution Vulnerability in INN Daemon by ISC

CVE-1999-0043

Summary

The INN daemon (innd) version 1.5 is vulnerable to command execution due to improper handling of shell metacharacters within control messages such as 'newgroup' and 'rmgroup'. An attacker can exploit this vulnerability to execute arbitrary commands on the server, posing a significant security risk to affected installations. Proper input validation and sanitization measures should be implemented to mitigate this issue.

References