Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the q_Host parameter.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-88,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| kimihia | tellme | * |