GitHub for Windows < 2.6.5 .git/config Command Execution
Medium Nessus Plugin ID 80202
The remote Windows host has an application installed that is affected by a command execution vulnerability.
The version of GitHub for Windows installed on the remote host is prior to 2.6.5. It is, therefore, affected by a command execution vulnerability when processing specially crafted git trees in a case-insensitive or case-normalizing file system. A remote attacker, using a specially crafted git tree, can overwrite a user's '.git/config' file when the user clones or checks out a repository, allowing arbitrary command execution.