Описание
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:beyondgrep:ack:2.00:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.02:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.04:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.05_01:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.06:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.08:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.10:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.11:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.11_01:*:*:*:*:*:*:*
cpe:2.3:a:beyondgrep:ack:2.11_02:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01517
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
ubuntu
около 12 лет назад
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
debian
около 12 лет назад
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary ...
github
больше 3 лет назад
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
EPSS
Процентиль: 81%
0.01517
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94