Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-5534HistoryDec 03, 2012 - 9:55 p.m.
CVE-2012-5534
2012-12-0321:55:00
Debian Security Bug Tracker
security-tracker.debian.org
14
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.6%
The hook_process function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to “shell expansion.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | weechat | < 0.3.9.2-1 | weechat_0.3.9.2-1_all.deb |
| Debian | 11 | all | weechat | < 0.3.9.2-1 | weechat_0.3.9.2-1_all.deb |
| Debian | 10 | all | weechat | < 0.3.9.2-1 | weechat_0.3.9.2-1_all.deb |
| Debian | 999 | all | weechat | < 0.3.9.2-1 | weechat_0.3.9.2-1_all.deb |
| Debian | 13 | all | weechat | < 0.3.9.2-1 | weechat_0.3.9.2-1_all.deb |
Related
openvas
openvas
Fedora Update for weechat FEDORA-2012-18526
2012-12-04 00:00:00
FreeBSD Ports: weechat
2012-11-26 00:00:00
Fedora Update for weechat FEDORA-2012-18526
2012-12-04 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: weechat-0.3.8-4.fc17
2012-11-29 06:09:36
[SECURITY] Fedora 18 Update: weechat-0.3.8-4.fc18
2012-11-27 05:11:30
[SECURITY] Fedora 16 Update: weechat-0.3.8-4.fc16
2012-11-29 06:18:40
nessus
nessus
Fedora 17 : weechat-0.3.8-4.fc17 (2012-18526)
2012-11-29 00:00:00
Fedora 16 : weechat-0.3.8-4.fc16 (2012-18575)
2012-11-29 00:00:00
Fedora 18 : weechat-0.3.8-4.fc18 (2012-18494)
2012-11-27 00:00:00
ubuntucve
ubuntucve
CVE-2012-5534
2012-12-03 00:00:00
prion
prion
Command injection
2012-12-03 21:55:00
cve
cve
CVE-2012-5534
2012-12-03 21:55:00
gentoo
gentoo
WeeChat: Multiple vulnerabilities
2014-05-03 00:00:00
osv
osv
weechat - several
2013-01-05 00:00:00
suse
suse
weechat (important)
2013-01-23 14:05:56
debian
debian
[SECURITY] [DSA 2598-1] weechat security update
2013-01-05 12:40:34
securityvulns
securityvulns
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.6%
Related for DEBIANCVE:CVE-2012-5534