Full story by one of the 2 finders on the oss-security@openwall mailing list: ht... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

bru on May 3, 2016 | parent | context | favorite | on: Remote code execution vulnerability in ImageMagick

Full story by one of the 2 finders on the oss-security@openwall mailing list: http://www.openwall.com/lists/oss-security/2016/05/03/18

tyingq on May 4, 2016 [–]

Would recommend reading the mailing list entry above...it has much more detail than the imagetragick.com site. The "unescaped shell characters" is only one of many issues.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact