Arbitrary Code Execution in debdiff.pl in devscripts 2.10.x and 2.11.x

Arbitrary Code Execution in debdiff.pl in devscripts 2.10.x and 2.11.x

CVE-2012-0212 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via shell metacharacters in the file name argument.

Learn more about our Web Application Penetration Testing UK.