Shell-injection vulnerability in Mercurial prior to version 4.3 due to inadequate hostname sanitization in ssh

Shell-injection vulnerability in Mercurial prior to version 4.3 due to inadequate hostname sanitization in ssh

CVE-2017-1000116 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks.

Learn more about our Web Application Penetration Testing UK.