← Back to CVEs
CVE-2012-2085
N/ADescription
The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.
CVE Details
CVSS v3.1 ScoreN/A
Published8/28/2012
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0
Affected Products
gajim:gajim
Weaknesses (CWE)
CWE-94
References
http://secunia.com/advisories/48708(secalert@redhat.com)
http://secunia.com/advisories/48794(secalert@redhat.com)
http://security.gentoo.org/glsa/glsa-201208-04.xml(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/04/08/1(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/04/08/2(secalert@redhat.com)
http://www.securityfocus.com/bid/52943(secalert@redhat.com)
https://trac.gajim.org/changeset/bc296e96ac10(secalert@redhat.com)
https://trac.gajim.org/ticket/7031(secalert@redhat.com)
http://secunia.com/advisories/48708(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/48794(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-201208-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/04/08/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/04/08/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/52943(af854a3a-2127-422b-91ae-364da2661108)
https://trac.gajim.org/changeset/bc296e96ac10(af854a3a-2127-422b-91ae-364da2661108)
https://trac.gajim.org/ticket/7031(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.