webbbs_post.pl in WebBBS 4 and 5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the followup parameter.Referenceshttp://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00232.htmlhttp://www.iss.net/security_center/static/9378.phphttp://www.securityfocus.com/bid/5048
