CVE-2020-15167

CVE-2020-15167

In Miller (command line utility) using the configuration file support introduced in version 5.9.0, it is possible for an attacker to cause Miller to run arbitrary code by placing a malicious `.mlrrc` file in the working directory. See linked GitHub Security Advisory for complete details. A fix is ready and will be released as Miller 5.9.1.

Source: CVE-2020-15167

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다