Command injection in ping command

[dorlafo]

Vulnerability location : commands.cpp:348

Type of vulnerability : The input to the ping function is not sanitized, thus we can use ; to chain command and execute a calculator.

Exploit : After connecting to the server, the client can simply type :
ping epfl.ch;gnomecalculator

[KTiago]

You are correct, there is indeed a vulnerability in the ping command and we certifiy that your exploit works. 🥇

This is a duplicate issue as #3