Glossary Description

Arbitrary Command Execution

Description:

It is very unsafe to let users run any command on your system. They might steal or destroy data. So commands and any user input in general should be scanned to remove unwanted characters. For instance, the \';\' character which is a command separator on Unix should be filtered out of input used to build commands.

© 2003-2007 NexantiS Corporation (www.securescout.com)
SecureScout is a trademark of NexantiS
All Rights Reserved
All products names referenced herein are trademarks of their respective companies

SecureScout products are certified:
CVE Compatible
SANS TOP 20 Compatible
CVSS Compatible (Common Vulnerability Scoring System)