cvs -- Remote code execution via ssh command injection
Hank Leininger reports:
Bugs in Git, Subversion, and Mercurial were just announced and patched
which allowed arbitrary local command execution if a malicious name was
used for the remote server, such as starting with - to pass options to
the ssh client:
git clone ssh://-oProxyCommand=some-command...
CVS has a similar problem with the -d option:
Tested vanilla CVS 1.12.13, and Gentoo CVS 1.12.12-r11.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright