Surprising shell pathname expansion

computer unix shell

I thought I was understanding pretty well how bash argument processing and various expansions is supposed to behave. Apparently, there are still subtleties which tricks me, sometimes.

Read more…

More example of argument and shell command injections in browser invocation

computer unix debian security shell vulnerability

In the previous episode, I talked about some argument and shell command injections vulnerabilities through URIs passed to browsers. Here I am evaluating some other CVEs which were registered at the same time (not by me).

Read more…

Page 1 of 1 | | Next page | JSON Feed | Atom Feed