TROYANOSYVIRUS
Back to CVEs

CVE-2008-2575

N/A

Description

cbrPager before 0.9.17 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a (1) ZIP (aka .cbz) or (2) RAR (aka .cbr) archive filename.

CVE Details

CVSS v3.1 ScoreN/A
Published6/6/2008
Last Modified4/9/2025
Sourcenvd
Honeypot Sightings0

Affected Products

fedoraproject:fedorajcoppens:cbrpager

Weaknesses (CWE)

CWE-78

References

http://cvs.fedoraproject.org/viewcvs/rpms/cbrpager/devel/cbrpager-0.9.16-filen-shell-escaping.patch?rev=1.2(cve@mitre.org)
http://secunia.com/advisories/30417(cve@mitre.org)
http://secunia.com/advisories/30438(cve@mitre.org)
http://secunia.com/advisories/30701(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200806-05.xml(cve@mitre.org)
http://sourceforge.net/forum/forum.php?forum_id=827120(cve@mitre.org)
http://sourceforge.net/project/shownotes.php?release_id=601538&group_id=119647(cve@mitre.org)
http://www.jcoppens.com/soft/cbrpager/log.en.php(cve@mitre.org)
http://www.vupen.com/english/advisories/2008/1693/references(cve@mitre.org)
https://bugzilla.redhat.com/show_bug.cgi?id=448285(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/42741(cve@mitre.org)
http://cvs.fedoraproject.org/viewcvs/rpms/cbrpager/devel/cbrpager-0.9.16-filen-shell-escaping.patch?rev=1.2(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/30417(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/30438(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/30701(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200806-05.xml(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/forum/forum.php?forum_id=827120(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/project/shownotes.php?release_id=601538&group_id=119647(af854a3a-2127-422b-91ae-364da2661108)
http://www.jcoppens.com/soft/cbrpager/log.en.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2008/1693/references(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=448285(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/42741(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.