CVE-2007-2055

Name of the Vulnerable Software and Affected Versions AFFLIB versions 2.2.8 and earlier

Description The issue allows attackers to execute arbitrary commands via shell metacharacters. This can be achieved through certain command line parameters in tools/afconvert.cpp and potentially through arguments to the get parameter function in aimage/ident.cpp, although it is unknown if the get parameter vector is ever called.

Recommendations For AFFLIB versions 2.2.8 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.