CVE-2013-7085

Published: Dec 14, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Uscan in devscripts 2.13.5, when USCAN_EXCLUSION is enabled, allows remote attackers to delete arbitrary files via a whitespace character in a filename.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20131212 Re: CVE Request: devscripts (uscan) broken handling of filenames with whitespace

mailing-list

x_refsource_MLIST

devscripts-uscan-file-deletion(89669)

vdb-entry

x_refsource_XF

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732006

x_refsource_MISC

64258

vdb-entry

x_refsource_BID

[oss-security] 20131212 CVE Request: devscripts (uscan) broken handling of filenames with whitespace

mailing-list

x_refsource_MLIST

100917

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-7085

Description

Affected Products

References