Potential Command Injection

Module: printer

Published: March 6th, 2014

Reported by: Adam Baldwin

CVE-2014-3741

CWE-77

Vulnerable: <= 0.0.1
Patched: > 0.0.1

Overview

Versions 0.0.1 and earlier of printer are affected by a command injection vulnerability resulting from a failure to sanitize command arguments properly in the printDirect() function.

Remediation

Update to version 0.0.2 or later.

References

Commit #e001e38