config_converters.py in BSCW (Basic Support for Cooperative Work) 3.x and versions before 4.06 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name during filename conversion.
http://www.securityfocus.com/bid/3776
http://www.securityfocus.com/archive/1/248000