CVE-2012-2241

EUVD-2012-2234
scripts/dget.pl in devscripts before 2.12.3 allows remote attackers to delete arbitrary files via a crafted (1) .dsc or (2) .changes file, probably related to a NULL byte in a filename.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
devscripts_devel_teamdevscripts
𝑥
≤ 2.12.2
devscripts_devel_teamdevscripts
2.7.0
devscripts_devel_teamdevscripts
2.8.14
devscripts_devel_teamdevscripts
2.9.21
devscripts_devel_teamdevscripts
2.9.22
devscripts_devel_teamdevscripts
2.9.23
devscripts_devel_teamdevscripts
2.9.24
devscripts_devel_teamdevscripts
2.9.25
devscripts_devel_teamdevscripts
2.9.26:etch1
devscripts_devel_teamdevscripts
2.9.26:etch2
devscripts_devel_teamdevscripts
2.9.26:etch4
devscripts_devel_teamdevscripts
2.9.26:etch5
devscripts_devel_teamdevscripts
2.9.27
devscripts_devel_teamdevscripts
2.10.0
devscripts_devel_teamdevscripts
2.10.1
devscripts_devel_teamdevscripts
2.10.3
devscripts_devel_teamdevscripts
2.10.6
devscripts_devel_teamdevscripts
2.10.7
devscripts_devel_teamdevscripts
2.10.8
devscripts_devel_teamdevscripts
2.10.9
devscripts_devel_teamdevscripts
2.10.10
devscripts_devel_teamdevscripts
2.10.11
devscripts_devel_teamdevscripts
2.10.12
devscripts_devel_teamdevscripts
2.10.13
devscripts_devel_teamdevscripts
2.10.14
devscripts_devel_teamdevscripts
2.10.15
devscripts_devel_teamdevscripts
2.10.16
devscripts_devel_teamdevscripts
2.10.17
devscripts_devel_teamdevscripts
2.10.18
devscripts_devel_teamdevscripts
2.10.18.1
devscripts_devel_teamdevscripts
2.10.19
devscripts_devel_teamdevscripts
2.10.20
devscripts_devel_teamdevscripts
2.10.21
devscripts_devel_teamdevscripts
2.10.22
devscripts_devel_teamdevscripts
2.10.23
devscripts_devel_teamdevscripts
2.10.24
devscripts_devel_teamdevscripts
2.10.25
devscripts_devel_teamdevscripts
2.10.26
devscripts_devel_teamdevscripts
2.10.27
devscripts_devel_teamdevscripts
2.10.28
devscripts_devel_teamdevscripts
2.10.29
devscripts_devel_teamdevscripts
2.10.30
devscripts_devel_teamdevscripts
2.10.31
devscripts_devel_teamdevscripts
2.10.32
devscripts_devel_teamdevscripts
2.10.33
devscripts_devel_teamdevscripts
2.10.34
devscripts_devel_teamdevscripts
2.10.35
devscripts_devel_teamdevscripts
2.10.36
devscripts_devel_teamdevscripts
2.10.38
devscripts_devel_teamdevscripts
2.10.39
devscripts_devel_teamdevscripts
2.10.40
devscripts_devel_teamdevscripts
2.10.41
devscripts_devel_teamdevscripts
2.10.42
devscripts_devel_teamdevscripts
2.10.43
devscripts_devel_teamdevscripts
2.10.44
devscripts_devel_teamdevscripts
2.10.45
devscripts_devel_teamdevscripts
2.10.46
devscripts_devel_teamdevscripts
2.10.47
devscripts_devel_teamdevscripts
2.10.48
devscripts_devel_teamdevscripts
2.10.49
devscripts_devel_teamdevscripts
2.10.50
devscripts_devel_teamdevscripts
2.10.51
devscripts_devel_teamdevscripts
2.10.52
devscripts_devel_teamdevscripts
2.10.53
devscripts_devel_teamdevscripts
2.10.54
devscripts_devel_teamdevscripts
2.10.55
devscripts_devel_teamdevscripts
2.10.56
devscripts_devel_teamdevscripts
2.10.57
devscripts_devel_teamdevscripts
2.10.58
devscripts_devel_teamdevscripts
2.10.59
devscripts_devel_teamdevscripts
2.10.60
devscripts_devel_teamdevscripts
2.10.61
devscripts_devel_teamdevscripts
2.10.62
devscripts_devel_teamdevscripts
2.10.63
devscripts_devel_teamdevscripts
2.10.64
devscripts_devel_teamdevscripts
2.10.65.1
devscripts_devel_teamdevscripts
2.10.66
devscripts_devel_teamdevscripts
2.10.67
devscripts_devel_teamdevscripts
2.10.68
devscripts_devel_teamdevscripts
2.11.0
devscripts_devel_teamdevscripts
2.11.1
devscripts_devel_teamdevscripts
2.11.2
devscripts_devel_teamdevscripts
2.11.3
devscripts_devel_teamdevscripts
2.11.4
devscripts_devel_teamdevscripts
2.11.5
devscripts_devel_teamdevscripts
2.11.6
devscripts_devel_teamdevscripts
2.11.7
devscripts_devel_teamdevscripts
2.11.8
devscripts_devel_teamdevscripts
2.11.9
devscripts_devel_teamdevscripts
2.12.0
devscripts_devel_teamdevscripts
2.12.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
devscripts
bookworm
2.23.4+deb12u1
fixed
bullseye
2.21.3+deb11u1
fixed
sid
2.24.2
fixed
trixie
2.24.2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
devscripts
hardy
ignored
lucid
Fixed 2.10.61ubuntu5.3
released
natty
Fixed 2.10.69ubuntu2.2
released
oneiric
Fixed 2.11.1ubuntu3.2
released
precise
Fixed 2.11.6ubuntu1.4
released
Common Weakness Enumeration
References
http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git%3Ba=commitdiff%3Bh=0fd15bdec07b085f9ef438dacd18e159ac60b810
http://secunia.com/advisories/50600
http://www.debian.org/security/2012/dsa-2549
http://www.securityfocus.com/bid/55564
http://www.ubuntu.com/usn/USN-1593-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/78977
http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git%3Ba=commitdiff%3Bh=0fd15bdec07b085f9ef438dacd18e159ac60b810
http://secunia.com/advisories/50600
http://www.debian.org/security/2012/dsa-2549
http://www.securityfocus.com/bid/55564
http://www.ubuntu.com/usn/USN-1593-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/78977