CVE-2002-1843

Name of the Vulnerable Software and Affected Versions Perlbot version 1.9.2

Description The issue allows remote attackers to execute arbitrary commands. This can be achieved by injecting shell metacharacters into specific variables, including the text variable in SpelCheck.pm or the filename variable in HTMLPlog.pm.

Recommendations For Perlbot version 1.9.2, consider restricting or sanitizing input to the text variable in SpelCheck.pm and the filename variable in HTMLPlog.pm to prevent the injection of shell metacharacters. As a temporary workaround, restrict access to these modules to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.