Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-2527HistoryAug 26, 2014 - 2:55 p.m.
CVE-2014-2527
2014-08-2614:55:05
Debian Security Bug Tracker
security-tracker.debian.org
9
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
kcleanup.cpp in KDirStat 2.7.0 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a " (double quote) character in the directory name, a different vulnerability than CVE-2014-2528.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | k4dirstat | < 3.4.2-1 | k4dirstat_3.4.2-1_all.deb |
| Debian | 11 | all | k4dirstat | < 3.2.2-1 | k4dirstat_3.2.2-1_all.deb |
| Debian | 10 | all | k4dirstat | < 3.1.3-1 | k4dirstat_3.1.3-1_all.deb |
| Debian | 999 | all | k4dirstat | < 3.4.3-1 | k4dirstat_3.4.3-1_all.deb |
| Debian | 13 | all | k4dirstat | < 3.4.3-1 | k4dirstat_3.4.3-1_all.deb |
Related
cve
cve
CVE-2014-2527
2014-08-26 14:55:05
CVE-2014-2528
2014-08-26 14:55:05
ubuntucve
ubuntucve
CVE-2014-2527
2014-08-26 00:00:00
CVE-2014-2528
2014-08-26 00:00:00
cvelist
cvelist
CVE-2014-2528
2014-08-26 14:00:00
CVE-2014-2527
2014-08-26 14:00:00
openvas
openvas
Fedora Update for k4dirstat FEDORA-2014-4121
2014-04-03 00:00:00
Fedora Update for k4dirstat FEDORA-2014-4135
2014-04-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0930-1)
2021-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: k4dirstat-2.7.0-0.14.20101010git6c0a9e6.fc19
2014-03-30 06:11:36
[SECURITY] Fedora 20 Update: k4dirstat-2.7.0-0.14.20101010git6c0a9e6.fc20
2014-03-30 06:05:30
prion
prion
Directory traversal
2014-08-26 14:55:00
Directory traversal
2014-08-26 14:55:00
nessus
nessus
SuSE 11.3 Security Update : kdirstat (SAT Patch Number 9515)
2014-07-24 00:00:00
Fedora 19 : k4dirstat-2.7.0-0.14.20101010git6c0a9e6.fc19 (2014-4121)
2014-03-31 00:00:00
Fedora 20 : k4dirstat-2.7.0-0.14.20101010git6c0a9e6.fc20 (2014-4135)
2014-03-31 00:00:00
nvd
nvd
CVE-2014-2528
2014-08-26 14:55:05
CVE-2014-2527
2014-08-26 14:55:05
debiancve
debiancve
CVE-2014-2528
2014-08-26 14:55:05
gentoo
gentoo
KDirStat: Arbitrary command execution
2014-06-15 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Related for DEBIANCVE:CVE-2014-2527