Severity : Medium Published : 2005-05-13 Modified : 2010-08-21 Base Score : 4.6 Details : zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script. Product/Version : Carrier Grade CGE 6.0

CVE-2005-4889 CVE-2005-4881 CVE-2005-4811 CVE-2005-4618 CVE-2005-3359 CVE-2005-3358 CVE-2005-3276 CVE-2005-3274 CVE-2005-3273 CVE-2005-3272 CVE-2005-3185 CVE-2005-3055 CVE-2005-2974 CVE-2005-2946 CVE-2005-2800 CVE-2005-2492 CVE-2005-2459 CVE-2005-2458 CVE-2005-2457 CVE-2005-2368 CVE-2005-2099 CVE-2005-2098 CVE-2005-1369 CVE-2005-1368 CVE-2005-1228 CVE-2005-0758 CVE-2005-0504 CVE-2005-0448 CVE-2005-0179 CVE-2005-0069