CVE-2009-4644

Name of the Vulnerable Software and Affected Versions Accellion Secure File Transfer Appliance versions prior to 8 0 105

Description The issue allows remote authenticated administrators to bypass the restricted shell and execute arbitrary commands via shell metacharacters to the ping command. This can be achieved by modifying the cli program.

Recommendations For versions prior to 8 0 105, update to version 8 0 105 or later to resolve the issue. As a temporary workaround, consider restricting access to the ping command and limiting the use of shell metacharacters to minimize the risk of exploitation.