CVE-2009-4273

Published: Jan 26, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

FEDORA-2010-1373

vendor-advisory

x_refsource_FEDORA

oval:org.mitre.oval:def:11417

vdb-entry

signature

x_refsource_OVAL

38154

third-party-advisory

x_refsource_SECUNIA

FEDORA-2010-0671

vendor-advisory

x_refsource_FEDORA

FEDORA-2010-0688

vendor-advisory

x_refsource_FEDORA

http://sourceware.org/systemtap/ftp/releases/systemtap-1.1.tar.gz

x_refsource_CONFIRM

39656

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=550172

x_refsource_CONFIRM

38216

third-party-advisory

x_refsource_SECUNIA

[scm-commits] 20100215 rpms/systemtap/devel systemtap-1.1-tighten-server-params.patch, NONE, 1.1 systemtap.spec, 1.59, 1.60

mailing-list

x_refsource_MLIST

ADV-2010-0169

vdb-entry

x_refsource_VUPEN

SUSE-SR:2010:010

vendor-advisory

x_refsource_SUSE

[systemtap] 20100115 SystemTap release 1.1

mailing-list

x_refsource_MLIST

http://sourceware.org/bugzilla/show_bug.cgi?id=11105

x_refsource_CONFIRM

RHSA-2010:0124

vendor-advisory

x_refsource_REDHAT

38765

third-party-advisory

x_refsource_SECUNIA

FEDORA-2010-1720

vendor-advisory

x_refsource_FEDORA

ADV-2010-1001

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-4273

Description

Affected Products

References