Gentoo Linux Security Advisory GLSA 200909-06 - An input validation error in aMule enables remote attackers to pass arbitrary parameters to a victim's media player. Sam Hocevar discovered that the aMule preview function does not properly sanitize file names. Versions less than 2.2.5 are affected.
549bba9d231e2ec336525be367bc903eb6581d550c040ffdedb42f4970b258f3
Debian Security Advisory 1821-1 - Sam Hocevar discovered that amule, a client for the eD2k and Kad networks, does not properly sanitise the filename, when using the preview function. This could lead to the injection of arbitrary commands passed to the video player.
19ecb775ea2427799e1863353b3f9dc86b452cc722a2ca8f2f764f7c4f24aae1