CVE-2011-3211

Published: Sep 15, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

The server in Bcfg2 1.1.2 and earlier, and 1.2 prerelease, allows remote attackers to execute arbitrary commands via shell metacharacters in data received from a client.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/solj/bcfg2/commit/f4a35efec1b6a1e54d61cf1b8bfc83dd1d89eef7

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=736279

x_refsource_CONFIRM

49414

vdb-entry

x_refsource_BID

46042

third-party-advisory

x_refsource_SECUNIA

DSA-2302

vendor-advisory

x_refsource_DEBIAN

FEDORA-2011-12303

vendor-advisory

x_refsource_FEDORA

45926

third-party-advisory

x_refsource_SECUNIA

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=640028

x_refsource_CONFIRM

[bcfg-dev] 20110816 Security flaw in 1.1.x; testers wanted

mailing-list

x_refsource_MLIST

45807

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20110906 Re: CVE request for bcfg2 (remote root)

mailing-list

x_refsource_MLIST

FEDORA-2011-12298

vendor-advisory

x_refsource_FEDORA

https://github.com/solj/bcfg2/commit/46795ae451ca6ede55a0edeb726978aef4684b53

x_refsource_CONFIRM

[oss-security] 20110901 CVE request for bcfg2 (remote root)

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-3211

Description

Affected Products

References