Описание
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are not properly escaped, a different vulnerability than CVE-2012-2240.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | released | 2.10.61ubuntu5.3 |
| natty | released | 2.10.69ubuntu2.2 |
| oneiric | not-affected | 2.11.1ubuntu3.1 |
| precise | not-affected | |
| upstream | released | 2.12.3 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are not properly escaped, a different vulnerability than CVE-2012-2240.
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers t ...
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are not properly escaped, a different vulnerability than CVE-2012-2240.
EPSS
6.8 Medium
CVSS2