CVE-2006-1865

Опубликовано: 21 апр. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary commands via crafted filenames that inject command line arguments when Beagle launches external helper applications while indexing.

Ссылки

http://lists.seifried.org/pipermail/security/2006-April/013163.html
Broken Link
http://scary.beasts.org/security/CESA-2006-002.html
Third Party Advisory
http://secunia.com/advisories/19778
Broken Link
Vendor Advisory
http://secunia.com/advisories/19781
Broken Link
Vendor Advisory
http://secunia.com/advisories/19897
Broken Link
Vendor Advisory
http://www.novell.com/linux/security/advisories/2006_04_28.html
Broken Link
http://www.osvdb.org/24938
Broken Link
http://www.securityfocus.com/bid/17611
Broken Link
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189282
Issue Tracking
https://exchange.xforce.ibmcloud.com/vulnerabilities/26104
Third Party Advisory
VDB Entry
http://lists.seifried.org/pipermail/security/2006-April/013163.html
Broken Link
http://scary.beasts.org/security/CESA-2006-002.html
Third Party Advisory
http://secunia.com/advisories/19778
Broken Link
Vendor Advisory
http://secunia.com/advisories/19781
Broken Link
Vendor Advisory
http://secunia.com/advisories/19897
Broken Link
Vendor Advisory
http://www.novell.com/linux/security/advisories/2006_04_28.html
Broken Link
http://www.osvdb.org/24938
Broken Link
http://www.securityfocus.com/bid/17611
Broken Link
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189282
Issue Tracking
https://exchange.xforce.ibmcloud.com/vulnerabilities/26104
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:beagle_project:beagle:*:*:*:*:*:*:*:*

Версия до 0.2.5 (исключая)

EPSS

Процентиль: 82%

0.019

Низкий

7.5 High

CVSS2

Дефекты

CWE-88

Связанные уязвимости

CVE-2006-1865

ubuntu

больше 19 лет назад

CVE-2006-1865

debian

больше 19 лет назад

Argument injection vulnerability in Beagle before 0.2.5 allows attacke ...

GHSA-9cg4-j3w9-fwph

github

больше 3 лет назад

EPSS

Процентиль: 82%

0.019

Низкий

7.5 High

CVSS2

Дефекты

CWE-88