CVE-2005-0758

Опубликовано: 13 мая 2005

Источник: debian

EPSS Низкий

Описание

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gzip	fixed	1.3.5-10		package
bzip2	fixed	1.0.2-8.1		package
bzip2	no-dsa		sarge	package

Примечания

see http://bugs.gentoo.org/show_bug.cgi?id=90626

EPSS

Процентиль: 36%

0.0015

Низкий

Связанные уязвимости

CVE-2005-0758

ubuntu

больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

CVE-2005-0758

redhat

больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

CVE-2005-0758

nvd

больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

GHSA-gc4q-mf7x-jrrp

github

больше 3 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

EPSS

Процентиль: 36%

0.0015

Низкий