Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0211

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-0211
Last Modified 18 Jun 2012 12:00:00
Published 15 Jun 2012 08:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0211

Summary

debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via a crafted tarball file name in the top-level directory of an original (.orig) source tarball of a source package.

Vulnerable Systems

Application

  • Devscripts Devel Team Devscripts 2.10.0

  • Devscripts Devel Team Devscripts 2.10.1

  • Devscripts Devel Team Devscripts 2.10.10

  • Devscripts Devel Team Devscripts 2.10.11

  • Devscripts Devel Team Devscripts 2.10.12

  • Devscripts Devel Team Devscripts 2.10.13

  • Devscripts Devel Team Devscripts 2.10.14

  • Devscripts Devel Team Devscripts 2.10.15

  • Devscripts Devel Team Devscripts 2.10.16

  • Devscripts Devel Team Devscripts 2.10.17

  • Devscripts Devel Team Devscripts 2.10.18

  • Devscripts Devel Team Devscripts 2.10.18.1

  • Devscripts Devel Team Devscripts 2.10.19

  • Devscripts Devel Team Devscripts 2.10.20

  • Devscripts Devel Team Devscripts 2.10.21

  • Devscripts Devel Team Devscripts 2.10.22

  • Devscripts Devel Team Devscripts 2.10.23

  • Devscripts Devel Team Devscripts 2.10.24

  • Devscripts Devel Team Devscripts 2.10.25

  • Devscripts Devel Team Devscripts 2.10.26

  • Devscripts Devel Team Devscripts 2.10.27

  • Devscripts Devel Team Devscripts 2.10.28

  • Devscripts Devel Team Devscripts 2.10.29

  • Devscripts Devel Team Devscripts 2.10.3

  • Devscripts Devel Team Devscripts 2.10.30

  • Devscripts Devel Team Devscripts 2.10.31

  • Devscripts Devel Team Devscripts 2.10.32

  • Devscripts Devel Team Devscripts 2.10.33

  • Devscripts Devel Team Devscripts 2.10.34

  • Devscripts Devel Team Devscripts 2.10.35

  • Devscripts Devel Team Devscripts 2.10.36

  • Devscripts Devel Team Devscripts 2.10.38

  • Devscripts Devel Team Devscripts 2.10.39

  • Devscripts Devel Team Devscripts 2.10.40

  • Devscripts Devel Team Devscripts 2.10.41

  • Devscripts Devel Team Devscripts 2.10.42

  • Devscripts Devel Team Devscripts 2.10.43

  • Devscripts Devel Team Devscripts 2.10.44

  • Devscripts Devel Team Devscripts 2.10.45

  • Devscripts Devel Team Devscripts 2.10.46

  • Devscripts Devel Team Devscripts 2.10.47

  • Devscripts Devel Team Devscripts 2.10.48

  • Devscripts Devel Team Devscripts 2.10.49

  • Devscripts Devel Team Devscripts 2.10.50

  • Devscripts Devel Team Devscripts 2.10.51

  • Devscripts Devel Team Devscripts 2.10.52

  • Devscripts Devel Team Devscripts 2.10.53

  • Devscripts Devel Team Devscripts 2.10.54

  • Devscripts Devel Team Devscripts 2.10.55

  • Devscripts Devel Team Devscripts 2.10.56

  • Devscripts Devel Team Devscripts 2.10.57

  • Devscripts Devel Team Devscripts 2.10.58

  • Devscripts Devel Team Devscripts 2.10.59

  • Devscripts Devel Team Devscripts 2.10.6

  • Devscripts Devel Team Devscripts 2.10.60

  • Devscripts Devel Team Devscripts 2.10.61

  • Devscripts Devel Team Devscripts 2.10.62

  • Devscripts Devel Team Devscripts 2.10.63

  • Devscripts Devel Team Devscripts 2.10.64

  • Devscripts Devel Team Devscripts 2.10.65.1

  • Devscripts Devel Team Devscripts 2.10.66

  • Devscripts Devel Team Devscripts 2.10.67

  • Devscripts Devel Team Devscripts 2.10.68

  • Devscripts Devel Team Devscripts 2.10.7

  • Devscripts Devel Team Devscripts 2.10.8

  • Devscripts Devel Team Devscripts 2.10.9

  • Devscripts Devel Team Devscripts 2.11.0

  • Devscripts Devel Team Devscripts 2.11.1

  • Devscripts Devel Team Devscripts 2.11.2

  • Devscripts Devel Team Devscripts 2.11.3


References

XF - devscripts-commands-code-execution(73216)

BID - 52029

OSVDB - 79320

DEBIAN - DSA-2409

UBUNTU - USN-1366-1

SECUNIA - 48039

SECUNIA - 47955

CONFIRM - http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git;a=commitdiff;h=9cbe605d3eab4f9e67525f69b676c55b273b7a03

CONFIRM - http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git;a=commitdiff;h=87f88232eb643f0c118c6ba38db8e966915b450f


Last Updated: 27 May 2016 10:56:31