Lucene search

K
cveRedhatCVE-2012-2085
HistoryAug 28, 2012 - 5:55 p.m.

CVE-2012-2085

2012-08-2817:55:04
CWE-94
redhat
web.nvd.nist.gov
48
cve-2012-2085
gajim
exec_command function
vulnerability
remote code execution
nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

88.2%

The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.

Affected configurations

Nvd
Node
gajimgajimRange0.14.4
OR
gajimgajimMatch0.1
OR
gajimgajimMatch0.10
OR
gajimgajimMatch0.10.1
OR
gajimgajimMatch0.11
OR
gajimgajimMatch0.11.1
OR
gajimgajimMatch0.11.2
OR
gajimgajimMatch0.11.3
OR
gajimgajimMatch0.11.4
OR
gajimgajimMatch0.12
OR
gajimgajimMatch0.12.1
OR
gajimgajimMatch0.12.2
OR
gajimgajimMatch0.12.3
OR
gajimgajimMatch0.12.4
OR
gajimgajimMatch0.12.5
OR
gajimgajimMatch0.12.5alpha1
OR
gajimgajimMatch0.12.5beta1
OR
gajimgajimMatch0.13
OR
gajimgajimMatch0.13.1
OR
gajimgajimMatch0.13.2
OR
gajimgajimMatch0.13.3
OR
gajimgajimMatch0.13.4
OR
gajimgajimMatch0.14
OR
gajimgajimMatch0.14.1
OR
gajimgajimMatch0.14.2
OR
gajimgajimMatch0.14.3
VendorProductVersionCPE
gajimgajim*cpe:2.3:a:gajim:gajim:*:*:*:*:*:*:*:*
gajimgajim0.1cpe:2.3:a:gajim:gajim:0.1:*:*:*:*:*:*:*
gajimgajim0.10cpe:2.3:a:gajim:gajim:0.10:*:*:*:*:*:*:*
gajimgajim0.10.1cpe:2.3:a:gajim:gajim:0.10.1:*:*:*:*:*:*:*
gajimgajim0.11cpe:2.3:a:gajim:gajim:0.11:*:*:*:*:*:*:*
gajimgajim0.11.1cpe:2.3:a:gajim:gajim:0.11.1:*:*:*:*:*:*:*
gajimgajim0.11.2cpe:2.3:a:gajim:gajim:0.11.2:*:*:*:*:*:*:*
gajimgajim0.11.3cpe:2.3:a:gajim:gajim:0.11.3:*:*:*:*:*:*:*
gajimgajim0.11.4cpe:2.3:a:gajim:gajim:0.11.4:*:*:*:*:*:*:*
gajimgajim0.12cpe:2.3:a:gajim:gajim:0.12:*:*:*:*:*:*:*
Rows per page:
1-10 of 261

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

88.2%