← Volver a CVEs
CVE-2012-2085
N/ADescripcion
The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado8/28/2012
Ultima modificacion4/11/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
gajim:gajim
Debilidades (CWE)
CWE-94
Referencias
http://secunia.com/advisories/48708(secalert@redhat.com)
http://secunia.com/advisories/48794(secalert@redhat.com)
http://security.gentoo.org/glsa/glsa-201208-04.xml(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/04/08/1(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/04/08/2(secalert@redhat.com)
http://www.securityfocus.com/bid/52943(secalert@redhat.com)
https://trac.gajim.org/changeset/bc296e96ac10(secalert@redhat.com)
https://trac.gajim.org/ticket/7031(secalert@redhat.com)
http://secunia.com/advisories/48708(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/48794(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-201208-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/04/08/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/04/08/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/52943(af854a3a-2127-422b-91ae-364da2661108)
https://trac.gajim.org/changeset/bc296e96ac10(af854a3a-2127-422b-91ae-364da2661108)
https://trac.gajim.org/ticket/7031(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.