CVE
- Id
- 14172
- CVE No.
- CVE-2005-2966
- Status
- Candidate
- Description
- The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.
- Phase
- Assigned (20050919)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 104876 | 14172 | CVE-2005-2966 | DEBIAN:DSA-847 | View |
| 104877 | 14172 | CVE-2005-2966 | URL:http://www.debian.org/security/2005/dsa-847 | View |
| 104878 | 14172 | CVE-2005-2966 | DEBIAN:DSA-1025 | View |
| 104879 | 14172 | CVE-2005-2966 | URL:http://www.debian.org/security/2006/dsa-1025 | View |
| 104880 | 14172 | CVE-2005-2966 | GENTOO:GLSA-200510-06 | View |
| 104881 | 14172 | CVE-2005-2966 | URL:http://www.gentoo.org/security/en/glsa/glsa-200510-06.xml | View |
| 104882 | 14172 | CVE-2005-2966 | MANDRIVA:MDKSA-2005:187 | View |
| 104883 | 14172 | CVE-2005-2966 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:187 | View |
| 104884 | 14172 | CVE-2005-2966 | SUSE:SUSE-SR:2005:022 | View |
| 104885 | 14172 | CVE-2005-2966 | URL:http://www.novell.com/linux/security/advisories/2005_22_sr.html | View |
| 104886 | 14172 | CVE-2005-2966 | UBUNTU:USN-193-1 | View |
| 104887 | 14172 | CVE-2005-2966 | URL:http://www.ubuntulinux.org/support/documentation/usn/usn-193-1 | View |
| 104888 | 14172 | CVE-2005-2966 | BID:15000 | View |
| 104889 | 14172 | CVE-2005-2966 | URL:http://www.securityfocus.com/bid/15000 | View |
| 104890 | 14172 | CVE-2005-2966 | VUPEN:ADV-2005-1950 | View |
| 104891 | 14172 | CVE-2005-2966 | URL:http://www.vupen.com/english/advisories/2005/1950 | View |
| 104892 | 14172 | CVE-2005-2966 | SECUNIA:17047 | View |
| 104893 | 14172 | CVE-2005-2966 | URL:http://secunia.com/advisories/17047 | View |
| 104894 | 14172 | CVE-2005-2966 | SECUNIA:17059 | View |
| 104895 | 14172 | CVE-2005-2966 | URL:http://secunia.com/advisories/17059 | View |
| 104896 | 14172 | CVE-2005-2966 | SECUNIA:17095 | View |
| 104897 | 14172 | CVE-2005-2966 | URL:http://secunia.com/advisories/17095 | View |
| 104898 | 14172 | CVE-2005-2966 | SECUNIA:17108 | View |
| 104899 | 14172 | CVE-2005-2966 | URL:http://secunia.com/advisories/17108 | View |
| 104900 | 14172 | CVE-2005-2966 | SECUNIA:17083 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 62313 | JVNDB-2005-000515 | Mozilla 製品のコマンドライン上の URL の処理における任意のコマンドを実行される脆弱性 | Firefox および Mozilla には、コマンドラインから起動する際に使用するシェルスクリプトにおいて、引数に指定する URL の妥当性の確認が不適切であるため、URL 内の `` (backticks) に囲まれた文字列をシェルコマンドとして認識してしまう脆弱性が存在します。 | CVE-2005-2968 | 14172 | 7.5 | http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000515.html | View |
