Back to search
CVE-2013-7050
Published: Dec 13, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCAN_EXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a directory name.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1040266
x_refsource_CONFIRM
[oss-securit] 20131211 Re: CVE request: devscripts (uscan) command execution flaw
mailing-list
x_refsource_MLIST
100855
vdb-entry
x_refsource_OSVDB
64241
vdb-entry
x_refsource_BID
[oss-securit] 20131211 CVE request: devscripts (uscan) command execution flaw
mailing-list
x_refsource_MLIST
devscripts-cve20137050-command-execution(89666)
vdb-entry
x_refsource_XF
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731849
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now