Lucene search
MitreCVE-2013-7416HistoryDec 03, 2014 - 9:59 p.m.
CVE-2013-7416
2014-12-0321:59:00
CWE-77
mitre
web.nvd.nist.gov
22
cve
2013
7416
canto
curses
guibase.py
remote feed
arbitrary commands
shell metacharacters
url
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.005
Percentile
77.5%
canto_curses/guibase.py in Canto Curses before 0.9.0 allows remote feed servers to execute arbitrary commands via shell metacharacters in a URL in a feed.
Affected configurations
Node
cantocanto_cursesRange≤0.9.0alpha5
ORcantocanto_cursesMatch0.8.4
ORcantocanto_cursesMatch0.9.0alpha2
ORcantocanto_cursesMatch0.9.0alpha3
ORcantocanto_cursesMatch0.9.0alpha4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canto | canto_curses | * | cpe:2.3:a:canto:canto_curses:*:alpha5:*:*:*:*:*:* |
| canto | canto_curses | 0.8.4 | cpe:2.3:a:canto:canto_curses:0.8.4:*:*:*:*:*:*:* |
| canto | canto_curses | 0.9.0 | cpe:2.3:a:canto:canto_curses:0.9.0:alpha2:*:*:*:*:*:* |
| canto | canto_curses | 0.9.0 | cpe:2.3:a:canto:canto_curses:0.9.0:alpha3:*:*:*:*:*:* |
| canto | canto_curses | 0.9.0 | cpe:2.3:a:canto:canto_curses:0.9.0:alpha4:*:*:*:*:*:* |
Related
prion
prion
Code injection
2014-12-03 21:59:00
ubuntucve
ubuntucve
CVE-2013-7416
2014-12-03 00:00:00
cvelist
cvelist
CVE-2013-7416
2014-12-03 21:00:00
nvd
nvd
CVE-2013-7416
2014-12-03 21:59:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.005
Percentile
77.5%
Related for CVE-2013-7416