CVE-2013-2088
31.07.2013, 13:20
contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apache | subversion | 𝑥 ≤ 1.6.21 |
| apache | subversion | 1.6.0 |
| apache | subversion | 1.6.1 |
| apache | subversion | 1.6.2 |
| apache | subversion | 1.6.3 |
| apache | subversion | 1.6.4 |
| apache | subversion | 1.6.5 |
| apache | subversion | 1.6.6 |
| apache | subversion | 1.6.7 |
| apache | subversion | 1.6.8 |
| apache | subversion | 1.6.9 |
| apache | subversion | 1.6.10 |
| apache | subversion | 1.6.11 |
| apache | subversion | 1.6.12 |
| apache | subversion | 1.6.13 |
| apache | subversion | 1.6.14 |
| apache | subversion | 1.6.15 |
| apache | subversion | 1.6.16 |
| apache | subversion | 1.6.17 |
| apache | subversion | 1.6.18 |
| apache | subversion | 1.6.19 |
| apache | subversion | 1.6.20 |
| collabnet | subversion | 1.6.17 |
| opensuse | opensuse | 11.4 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| subversion |
| ||||||||||||
| subversion-bash-completion |
| ||||||||||||
| subversion-devel |
| ||||||||||||
| subversion-perl |
| ||||||||||||
| subversion-python |
| ||||||||||||
| subversion-tools |
|
Common Weakness Enumeration
References