Arbitrary Command Execution Vulnerability in osc before 0.134

Arbitrary Command Execution Vulnerability in osc before 0.134

CVE-2012-1095 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

osc before 0.134 might allow remote OBS repository servers or package maintainers to execute arbitrary commands via a crafted (1) build log or (2) build status that contains an escape sequence for a terminal emulator.

Learn more about our Cis Benchmark Audit For Server Software.