https://www.exploit-db.com/exploits/25034

漏洞细节尚未披露

source: http://www.securityfocus.com/bid/12034/info

greed (Get and Resume Elite Edition) is prone to unauthorized command execution. This issue is exposed when the application processes a GRX file list that specifies shell metacharacters and commands in file names on the list. GRX file lists allow file downloads to be scripted. Since GRX file lists may originate from an external or untrusted source, this vulnerability is considered to be remote in nature.

Successful exploitation will result in command execution in the context of the application. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/25034.zip