NVD

Id
11953  
Name
CVE-2010-0394  
Description
PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote attackers to execute arbitrary commands via shell metacharacters in a crafted HTTP query that is used to generate a certain git command.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2010-02-09  
Modified Date
2010-02-10  
Seq
2010-0394  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
65753 11953 CVE-2010-0394 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=567039  View
65754 11953 CVE-2010-0394 DSA-1990  View
65755 11953 CVE-2010-0394 38076  View
65756 11953 CVE-2010-0394 tracgit-command-execution(56105)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
38681 JVNDB-2010-004466 Trac Git プラグインの PyGIT.py における任意のコマンドを実行される脆弱性 Debian GNU/Linux 用の Trac Git プラグイン (trac-git) の PyGIT.py には、Trac 内で有効になっている際、任意のコマンドを実行される脆弱性が存在します。 CVE-2010-0394 42974 CVE-2010-0394 11953 6.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004466.html 2010-02-03 2012-09-25 View