Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0212

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-0212
Last Modified 29 Oct 2012 11:59:47
Published 15 Jun 2012 08:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0212

Summary

debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via shell metacharacters in the file name argument.

Vulnerable Systems

Application

  • Devscripts Devel Team Devscripts 2.10.0

  • Devscripts Devel Team Devscripts 2.10.1

  • Devscripts Devel Team Devscripts 2.10.10

  • Devscripts Devel Team Devscripts 2.10.11

  • Devscripts Devel Team Devscripts 2.10.12

  • Devscripts Devel Team Devscripts 2.10.13

  • Devscripts Devel Team Devscripts 2.10.14

  • Devscripts Devel Team Devscripts 2.10.15

  • Devscripts Devel Team Devscripts 2.10.16

  • Devscripts Devel Team Devscripts 2.10.17

  • Devscripts Devel Team Devscripts 2.10.18

  • Devscripts Devel Team Devscripts 2.10.18.1

  • Devscripts Devel Team Devscripts 2.10.19

  • Devscripts Devel Team Devscripts 2.10.20

  • Devscripts Devel Team Devscripts 2.10.21

  • Devscripts Devel Team Devscripts 2.10.22

  • Devscripts Devel Team Devscripts 2.10.23

  • Devscripts Devel Team Devscripts 2.10.24

  • Devscripts Devel Team Devscripts 2.10.25

  • Devscripts Devel Team Devscripts 2.10.26

  • Devscripts Devel Team Devscripts 2.10.27

  • Devscripts Devel Team Devscripts 2.10.28

  • Devscripts Devel Team Devscripts 2.10.29

  • Devscripts Devel Team Devscripts 2.10.3

  • Devscripts Devel Team Devscripts 2.10.30

  • Devscripts Devel Team Devscripts 2.10.31

  • Devscripts Devel Team Devscripts 2.10.32

  • Devscripts Devel Team Devscripts 2.10.33

  • Devscripts Devel Team Devscripts 2.10.34

  • Devscripts Devel Team Devscripts 2.10.35

  • Devscripts Devel Team Devscripts 2.10.36

  • Devscripts Devel Team Devscripts 2.10.38

  • Devscripts Devel Team Devscripts 2.10.39

  • Devscripts Devel Team Devscripts 2.10.40

  • Devscripts Devel Team Devscripts 2.10.41

  • Devscripts Devel Team Devscripts 2.10.42

  • Devscripts Devel Team Devscripts 2.10.43

  • Devscripts Devel Team Devscripts 2.10.44

  • Devscripts Devel Team Devscripts 2.10.45

  • Devscripts Devel Team Devscripts 2.10.46

  • Devscripts Devel Team Devscripts 2.10.47

  • Devscripts Devel Team Devscripts 2.10.48

  • Devscripts Devel Team Devscripts 2.10.49

  • Devscripts Devel Team Devscripts 2.10.50

  • Devscripts Devel Team Devscripts 2.10.51

  • Devscripts Devel Team Devscripts 2.10.52

  • Devscripts Devel Team Devscripts 2.10.53

  • Devscripts Devel Team Devscripts 2.10.54

  • Devscripts Devel Team Devscripts 2.10.55

  • Devscripts Devel Team Devscripts 2.10.56

  • Devscripts Devel Team Devscripts 2.10.57

  • Devscripts Devel Team Devscripts 2.10.58

  • Devscripts Devel Team Devscripts 2.10.59

  • Devscripts Devel Team Devscripts 2.10.6

  • Devscripts Devel Team Devscripts 2.10.60

  • Devscripts Devel Team Devscripts 2.10.61

  • Devscripts Devel Team Devscripts 2.10.62

  • Devscripts Devel Team Devscripts 2.10.63

  • Devscripts Devel Team Devscripts 2.10.64

  • Devscripts Devel Team Devscripts 2.10.65.1

  • Devscripts Devel Team Devscripts 2.10.66

  • Devscripts Devel Team Devscripts 2.10.67

  • Devscripts Devel Team Devscripts 2.10.68

  • Devscripts Devel Team Devscripts 2.10.7

  • Devscripts Devel Team Devscripts 2.10.8

  • Devscripts Devel Team Devscripts 2.10.9

  • Devscripts Devel Team Devscripts 2.11.0

  • Devscripts Devel Team Devscripts 2.11.1

  • Devscripts Devel Team Devscripts 2.11.2

  • Devscripts Devel Team Devscripts 2.11.3


References

XF - devscripts-debdiff-code-execution(73217)

BID - 52029

OSVDB - 79322

DEBIAN - DSA-2409

UBUNTU - USN-1366-1

SECUNIA - 48039

SECUNIA - 47955

CONFIRM - http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git;a=commitdiff;h=9cbe605d3eab4f9e67525f69b676c55b273b7a03

UBUNTU - USN-1593-1


Last Updated: 27 May 2016 10:56:31