CVE-2008-1568

N/A Unknown

Published: March 31, 2008 Modified: April 23, 2026

Description

comix 3.6.4 allows attackers to execute arbitrary commands via a filename containing shell metacharacters that are not properly sanitized when executing the rar, unrar, or jpegtran programs.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=462840

Source: cve@mitre.org

http://secunia.com/advisories/29621

Source: cve@mitre.org

http://secunia.com/advisories/29731

Source: cve@mitre.org

http://secunia.com/advisories/29956

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200804-29.xml

Source: cve@mitre.org

http://www.securityfocus.com/bid/28547

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/41554

Source: cve@mitre.org

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00171.html

Source: cve@mitre.org

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00183.html

Source: cve@mitre.org

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=462840