CVE-2008-6935 | HackTesting

Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI.

References

http://www.securityfocus.com/archive/1/498389/100/0/threaded

http://secunia.com/advisories/32729

https://www.exploit-db.com/exploits/7167

https://www.exploit-db.com/exploits/7145

http://osvdb.org/49888

http://www.vupen.com/english/advisories/2008/3191

http://retrogod.altervista.org/exodus_uri.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/46663

http://www.securityfocus.com/bid/32330