pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the (1) NetBIOS or (2) workgroup name, which are not properly handled when searching for network printers.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-08-31T23:00:00Z

Updated: 2024-08-06T23:15:31.677Z

Reserved: 2011-07-27T00:00:00Z

Link: CVE-2011-2899

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-08-31T23:55:03.457

Modified: 2024-11-21T01:29:13.890

Link: CVE-2011-2899

cve-icon Redhat

Severity : Moderate

Publid Date: 2011-07-30T00:00:00Z

Links: CVE-2011-2899 - Bugzilla