Lucene search

DebianCVE-2012-0210

HistoryJun 16, 2012 - 12:55 a.m.

CVE-2012-0210

2012-06-1600:55:05

CWE-20

debian

web.nvd.nist.gov

cve-2012-0210

remote code execution

information disclosure

devscripts

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

Low

EPSS

0.06

Percentile

93.5%

JSON

debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to obtain system information and execute arbitrary code via the file name in a (1) .dsc or (2) .changes file.

Affected configurations

Nvd

Node

devscripts_devel_teamdevscriptsMatch2.10.0

devscripts_devel_teamdevscriptsMatch2.10.1

devscripts_devel_teamdevscriptsMatch2.10.3

devscripts_devel_teamdevscriptsMatch2.10.6

devscripts_devel_teamdevscriptsMatch2.10.7

devscripts_devel_teamdevscriptsMatch2.10.8

devscripts_devel_teamdevscriptsMatch2.10.9

devscripts_devel_teamdevscriptsMatch2.10.10

devscripts_devel_teamdevscriptsMatch2.10.11

devscripts_devel_teamdevscriptsMatch2.10.12

devscripts_devel_teamdevscriptsMatch2.10.13

devscripts_devel_teamdevscriptsMatch2.10.14

devscripts_devel_teamdevscriptsMatch2.10.15

devscripts_devel_teamdevscriptsMatch2.10.16

devscripts_devel_teamdevscriptsMatch2.10.17

devscripts_devel_teamdevscriptsMatch2.10.18

devscripts_devel_teamdevscriptsMatch2.10.18.1

devscripts_devel_teamdevscriptsMatch2.10.19

devscripts_devel_teamdevscriptsMatch2.10.20

devscripts_devel_teamdevscriptsMatch2.10.21

devscripts_devel_teamdevscriptsMatch2.10.22

devscripts_devel_teamdevscriptsMatch2.10.23

devscripts_devel_teamdevscriptsMatch2.10.24

devscripts_devel_teamdevscriptsMatch2.10.25

devscripts_devel_teamdevscriptsMatch2.10.26

devscripts_devel_teamdevscriptsMatch2.10.27

devscripts_devel_teamdevscriptsMatch2.10.28

devscripts_devel_teamdevscriptsMatch2.10.29

devscripts_devel_teamdevscriptsMatch2.10.30

devscripts_devel_teamdevscriptsMatch2.10.31

devscripts_devel_teamdevscriptsMatch2.10.32

devscripts_devel_teamdevscriptsMatch2.10.33

devscripts_devel_teamdevscriptsMatch2.10.34

devscripts_devel_teamdevscriptsMatch2.10.35

devscripts_devel_teamdevscriptsMatch2.10.36

devscripts_devel_teamdevscriptsMatch2.10.38

devscripts_devel_teamdevscriptsMatch2.10.39

devscripts_devel_teamdevscriptsMatch2.10.40

devscripts_devel_teamdevscriptsMatch2.10.41

devscripts_devel_teamdevscriptsMatch2.10.42

devscripts_devel_teamdevscriptsMatch2.10.43

devscripts_devel_teamdevscriptsMatch2.10.44

devscripts_devel_teamdevscriptsMatch2.10.45

devscripts_devel_teamdevscriptsMatch2.10.46

devscripts_devel_teamdevscriptsMatch2.10.47

devscripts_devel_teamdevscriptsMatch2.10.48

devscripts_devel_teamdevscriptsMatch2.10.49

devscripts_devel_teamdevscriptsMatch2.10.50

devscripts_devel_teamdevscriptsMatch2.10.51

devscripts_devel_teamdevscriptsMatch2.10.52

devscripts_devel_teamdevscriptsMatch2.10.53

devscripts_devel_teamdevscriptsMatch2.10.54

devscripts_devel_teamdevscriptsMatch2.10.55

devscripts_devel_teamdevscriptsMatch2.10.56

devscripts_devel_teamdevscriptsMatch2.10.57

devscripts_devel_teamdevscriptsMatch2.10.58

devscripts_devel_teamdevscriptsMatch2.10.59

devscripts_devel_teamdevscriptsMatch2.10.60

devscripts_devel_teamdevscriptsMatch2.10.61

devscripts_devel_teamdevscriptsMatch2.10.62

devscripts_devel_teamdevscriptsMatch2.10.63

devscripts_devel_teamdevscriptsMatch2.10.64

devscripts_devel_teamdevscriptsMatch2.10.65.1

devscripts_devel_teamdevscriptsMatch2.10.66

devscripts_devel_teamdevscriptsMatch2.10.67

devscripts_devel_teamdevscriptsMatch2.10.68

Node

devscripts_devel_teamdevscriptsMatch2.11.0

devscripts_devel_teamdevscriptsMatch2.11.1

devscripts_devel_teamdevscriptsMatch2.11.2

devscripts_devel_teamdevscriptsMatch2.11.3

VendorProductVersionCPE
devscripts_devel_teamdevscripts2.10.0cpe:2.3:a:devscripts_devel_team:devscripts:2.10.0:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.1cpe:2.3:a:devscripts_devel_team:devscripts:2.10.1:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.3cpe:2.3:a:devscripts_devel_team:devscripts:2.10.3:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.6cpe:2.3:a:devscripts_devel_team:devscripts:2.10.6:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.7cpe:2.3:a:devscripts_devel_team:devscripts:2.10.7:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.8cpe:2.3:a:devscripts_devel_team:devscripts:2.10.8:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.9cpe:2.3:a:devscripts_devel_team:devscripts:2.10.9:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.10cpe:2.3:a:devscripts_devel_team:devscripts:2.10.10:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.11cpe:2.3:a:devscripts_devel_team:devscripts:2.10.11:*:*:*:*:*:*:*
devscripts_devel_teamdevscripts2.10.12cpe:2.3:a:devscripts_devel_team:devscripts:2.10.12:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
devscripts_devel_team	devscripts	2.10.0	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.0:::::::*
devscripts_devel_team	devscripts	2.10.1	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.1:::::::*
devscripts_devel_team	devscripts	2.10.3	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.3:::::::*
devscripts_devel_team	devscripts	2.10.6	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.6:::::::*
devscripts_devel_team	devscripts	2.10.7	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.7:::::::*
devscripts_devel_team	devscripts	2.10.8	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.8:::::::*
devscripts_devel_team	devscripts	2.10.9	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.9:::::::*
devscripts_devel_team	devscripts	2.10.10	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.10:::::::*
devscripts_devel_team	devscripts	2.10.11	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.11:::::::*
devscripts_devel_team	devscripts	2.10.12	cpe:2.3:a:devscripts_devel_team:devscripts:2.10.12:::::::*