CVE-2007-4450

Name of the Vulnerable Software and Affected Versions Toribash versions 2.71 and earlier

Description The server does not properly handle long commands, allowing remote attackers to trigger a protocol violation where data is sent to other clients without a required LF character, as demonstrated by a SAY command. The security impact of this violation is not clear, although it probably makes exploitation easier.

Recommendations For Toribash versions 2.71 and earlier, consider restricting or disabling the SAY command until a proper fix is available to prevent potential exploitation.