nmap: fixed http-domino-enum-passwords script
nmap was updated to fix the http-domino-enum-passwords scripts.
If you ran the (fortunately non-default) http-domino-enum-passwords script
with the (fortunately also non-default) domino-enum-passwords.idpath
parameter against a malicious server, it could cause an arbitrarily named
file to to be written to the client system.
-
Submitted by
Wojtek Dziewięcki (vdziewiecki)
Fixed bugs
bnc#844953
VUL-0: CVE-2013-4885: nmap: commandinjection via domino password script
