Gnu · Gnu Coreutils · CVE-2014-9471
**Name of the Vulnerable Software and Affected Versions**
GNU coreutils (affected versions not specified)
**Description**
The issue allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted date string. This can be achieved by providing a specifically crafted string, such as "--date=TZ="123"345" @1", to the touch or date command.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.