CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
80.3%
Timothy D. Morgan discovered that the run-mailcap tool incorrectly filtered
certain shell metacharacters in filenames. If a user or automated system
were tricked into opening a file with a specially-crafted filename, a
remote attacker could possibly execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.10 | noarch | mime-support | < 3.55ubuntu1.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | mime-support | < 3.54ubuntu1.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | mime-support | < 3.51-1ubuntu1.1 | UNKNOWN |
Ubuntu | 10.04 | noarch | mime-support | < 3.48-1ubuntu1.1 | UNKNOWN |