Avi Alkalay man-cgi topic Variable Arbitrary Command Execution
Remote / Network Access
Loss of Integrity
man-cgi contains a flaw that may allow a malicious user to execute arbitrary commands on the server. The issue is triggered when a semi-colon is entered into the 'topic' variable. This flaw may lead to a loss of Confidentiality, Integrity and/or Availability.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.