Snoopy allows remote attackers to execute arbitrary commands. NOTE: this vulnerability exists due to an incomplete fix for CVE-2014-5008.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5009
Reference (s):
- BID:68783
- URL: http://www.securityfocus.com/bid/68783
- http://snoopy.cvs.sourceforge.net/viewvc/snoopy/Snoopy/Snoopy.class.php?r1=1.28&r2=1.29
- https://bugzilla.redhat.com/show_bug.cgi?id=1121497
- https://github.com/cogdog/feed2js/pull/12#issuecomment-48283706