PT-2014-1804 · Debian · Reportbug

Jakub Wilk

Published

2014-08-06

Updated

2017-08-29

CVE-2014-0479

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions reportbug versions prior to 6.4.4+deb7u1 reportbug versions 6.5.x prior to 6.5.0+nmu1

Description The issue allows remote attackers to execute arbitrary commands, potentially leading to a breach of confidentiality, integrity, and availability of protected information. This can be exploited remotely.

Recommendations For reportbug versions prior to 6.4.4+deb7u1, update to version 6.4.4+deb7u1 or later. For reportbug versions 6.5.x prior to 6.5.0+nmu1, update to version 6.5.0+nmu1 or later.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

BDU:2015-04137

CVE-2014-0479

DLA-31-1

DSA-2997-1

Affected Products

Reportbug

PT-2014-1804 · Debian · Reportbug

CVE-2014-0479

Weakness Enumeration

Related Identifiers

Affected Products

References · 16