Arbitrary Command Execution in ConnMan Loopback Plug-in

Arbitrary Command Execution in ConnMan Loopback Plug-in

CVE-2012-2321 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.

Learn more about our Web Application Penetration Testing UK.