Security Advisory

CVE-2020-13661

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-05 18:18:58
Last updated 2024-08-04 12:25:16
Assigner mitre
State PUBLISHED

Description

Telerik Fiddler through 5.0.20202.18177 allows attackers to execute arbitrary programs via a hostname with a trailing space character, followed by --utility-and-browser --utility-cmd-prefix= and the pathname of a locally installed program. The victim must interactively choose the Open On Browser option. Fixed in version 5.0.20204.