Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-2088

Опубликовано: 31 мая 2013
Источник: redhat
CVSS2: 4.6

Описание

contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.

Отчет

Not Vulnerable. This issue does not affect the version of subversion as shipped with Red Hat Enterprise Linux 5 and 6.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5subversionNot affected
Red Hat Enterprise Linux 6subversionNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=970027subversion: Improper sanitization of arguments of certain hook scripts might lead to arbitrary code execution

4.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-2088

ubuntu
больше 12 лет назад

contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.

nvd логотип

CVE-2013-2088

nvd
больше 12 лет назад

contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.

debian логотип

CVE-2013-2088

debian
больше 12 лет назад

contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 ...

github логотип

GHSA-92h8-fm5h-34jg

github
больше 3 лет назад

contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.

4.6 Medium

CVSS2