Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
MITRE description: LHA 1.14 and earlier allows attackers to execute arbitrary commands via a directory with shell metacharacters in its name.