The get_main_source_dir function in scripts/uscan.pl in devscripts prior to 2.13.8, when using USCAN_EXCLUSION, allows remote malicious users to execute arbitrary commands via shell metacharacters in a directory name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
devscripts devel team devscripts 2.13.5 |
||
devscripts devel team devscripts 2.13.2 |
||
devscripts devel team devscripts |
||
devscripts devel team devscripts 2.13.4 |
||
devscripts devel team devscripts 2.13.1 |
||
devscripts devel team devscripts 2.13.0 |
||
devscripts devel team devscripts 2.13.6 |
||
devscripts devel team devscripts 2.13.3 |