A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect.
Credits
Red Hat would like to thank Vasilij Schneidermann (CODE WHITE) for reporting this issue.
