Lucene search
HistoryAug 28, 2012 - 5:55 p.m.
CVE-2012-2085
cve-2012-2085
gajim
exec_command function
vulnerability
remote code execution
nvd
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.0%
The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.
Related
ubuntucve
ubuntucve
CVE-2012-2085
2012-08-28 00:00:00
prion
prion
Design/Logic Flaw
2012-08-28 17:55:00
debiancve
debiancve
CVE-2012-2085
2012-08-28 17:55:00
openvas
openvas
Gentoo Security Advisory GLSA 201208-04 (gajim)
2012-08-30 00:00:00
Debian Security Advisory DSA 2453-2 (gajim)
2012-04-30 00:00:00
Gentoo Security Advisory GLSA 201208-04 (gajim)
2012-08-30 00:00:00
debian
debian
[SECURITY] [DSA 2453-2] gajim regression
2012-04-19 00:35:37
[SECURITY] [DSA 2453-1] gajim security update
2012-04-16 05:23:39
nessus
nessus
GLSA-201208-04 : Gajim: Multiple vulnerabilities
2012-08-15 00:00:00
Debian DSA-2453-1 : gajim - several vulnerabilities
2012-04-17 00:00:00
gentoo
gentoo
Gajim: Multiple vulnerabilities
2012-08-14 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2453-1] gajim security update
2012-04-19 00:00:00
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.0%
Related for CVE-2012-2085