CVE Vulnerabilities

CVE-2011-1400

Published: Mar 25, 2011 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
6.8 MODERATE
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM

The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute arbitrary code via a crafted TeX document.

Affected Software

Name Vendor Start Version End Version
Tex-common Debian 0.1 (including) 0.1 (including)
Tex-common Debian 0.2 (including) 0.2 (including)
Tex-common Debian 0.3 (including) 0.3 (including)
Tex-common Debian 0.4 (including) 0.4 (including)
Tex-common Debian 0.5 (including) 0.5 (including)
Tex-common Debian 0.6 (including) 0.6 (including)
Tex-common Debian 0.7 (including) 0.7 (including)
Tex-common Debian 0.8 (including) 0.8 (including)
Tex-common Debian 0.9 (including) 0.9 (including)
Tex-common Debian 0.10 (including) 0.10 (including)
Tex-common Debian 0.11 (including) 0.11 (including)
Tex-common Debian 0.12 (including) 0.12 (including)
Tex-common Debian 0.13 (including) 0.13 (including)
Tex-common Debian 0.14 (including) 0.14 (including)
Tex-common Debian 0.15 (including) 0.15 (including)
Tex-common Debian 0.16 (including) 0.16 (including)
Tex-common Debian 0.17 (including) 0.17 (including)
Tex-common Debian 0.18 (including) 0.18 (including)
Tex-common Debian 0.19 (including) 0.19 (including)
Tex-common Debian 0.20 (including) 0.20 (including)
Tex-common Debian 0.21 (including) 0.21 (including)
Tex-common Debian 0.22 (including) 0.22 (including)
Tex-common Debian 0.23 (including) 0.23 (including)
Tex-common Debian 0.24 (including) 0.24 (including)
Tex-common Debian 0.25 (including) 0.25 (including)
Tex-common Debian 0.26 (including) 0.26 (including)
Tex-common Debian 0.27 (including) 0.27 (including)
Tex-common Debian 0.28 (including) 0.28 (including)
Tex-common Debian 0.29 (including) 0.29 (including)
Tex-common Debian 0.30 (including) 0.30 (including)
Tex-common Debian 0.31 (including) 0.31 (including)
Tex-common Debian 0.32 (including) 0.32 (including)
Tex-common Debian 0.33 (including) 0.33 (including)
Tex-common Debian 0.34 (including) 0.34 (including)
Tex-common Debian 0.35 (including) 0.35 (including)
Tex-common Debian 0.36 (including) 0.36 (including)
Tex-common Debian 0.37 (including) 0.37 (including)
Tex-common Debian 0.38 (including) 0.38 (including)
Tex-common Debian 0.39 (including) 0.39 (including)
Tex-common Debian 0.40 (including) 0.40 (including)
Tex-common Debian 0.41 (including) 0.41 (including)
Tex-common Debian 0.42 (including) 0.42 (including)
Tex-common Debian 0.43 (including) 0.43 (including)
Tex-common Debian 0.44 (including) 0.44 (including)
Tex-common Debian 1.0 (including) 1.0 (including)
Tex-common Debian 1.1 (including) 1.1 (including)
Tex-common Debian 1.2 (including) 1.2 (including)
Tex-common Debian 1.3 (including) 1.3 (including)
Tex-common Debian 1.4 (including) 1.4 (including)
Tex-common Debian 1.5 (including) 1.5 (including)
Tex-common Debian 1.6 (including) 1.6 (including)
Tex-common Debian 1.7 (including) 1.7 (including)
Tex-common Debian 1.8 (including) 1.8 (including)
Tex-common Debian 1.9 (including) 1.9 (including)
Tex-common Debian 1.10 (including) 1.10 (including)
Tex-common Debian 1.11 (including) 1.11 (including)
Tex-common Debian 1.11.1 (including) 1.11.1 (including)
Tex-common Debian 1.11.2 (including) 1.11.2 (including)
Tex-common Debian 1.11.3 (including) 1.11.3 (including)
Tex-common Debian 1.12 (including) 1.12 (including)
Tex-common Debian 1.13 (including) 1.13 (including)
Tex-common Debian 1.14 (including) 1.14 (including)
Tex-common Debian 1.15 (including) 1.15 (including)
Tex-common Debian 1.16 (including) 1.16 (including)
Tex-common Debian 1.17 (including) 1.17 (including)
Tex-common Debian 1.18 (including) 1.18 (including)
Tex-common Debian 1.19 (including) 1.19 (including)
Tex-common Debian 1.20 (including) 1.20 (including)
Tex-common Debian 2.00 (including) 2.00 (including)
Tex-common Debian 2.01 (including) 2.01 (including)
Tex-common Debian 2.02 (including) 2.02 (including)
Tex-common Debian 2.03 (including) 2.03 (including)
Tex-common Debian 2.04 (including) 2.04 (including)
Tex-common Debian 2.05 (including) 2.05 (including)
Tex-common Debian 2.06 (including) 2.06 (including)
Tex-common Debian 2.07 (including) 2.07 (including)
Tex-common Debian 2.08 (including) 2.08 (including)
Ubuntu_linux Canonical 10.04 (including) 10.04 (including)
Ubuntu_linux Canonical 10.10 (including) 10.10 (including)
Debian_linux Debian * *
Tex-common Ubuntu dapper *
Tex-common Ubuntu lucid *
Tex-common Ubuntu maverick *
Tex-common Ubuntu upstream *

References