CVE-2002-0652

Name of the Vulnerable Software and Affected Versions xfsmd for IRIX versions 6.5 through 6.5.16

Description The issue allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export fs().

Recommendations For xfsmd for IRIX versions 6.5 through 6.5.16, consider restricting access to the export fs() function until a patch is available. As a temporary workaround, avoid using shell metacharacters in the affected function calls to minimize the risk of exploitation.