CVE-2008-5516

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions git versions 1.5.x through 1.5.4 git versions prior to 1.6.0.6

Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters related to git search, potentially leading to disruption of confidentiality, integrity, and availability of protected information. Exploitation can be done remotely.

Recommendations For git versions 1.5.x through 1.5.4, update to version 1.5.5 or later. For git versions prior to 1.6.0.6, update to version 1.6.0.6 or later.

Fix

RCE

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78CWE-264

Related Identifiers

BDU:2015-09370

CVE-2008-5516

DSA-1708-1

Affected Products

Git

CVE-2008-5516

Weakness Enumeration

Related Identifiers

Affected Products

References · 21