CVE Vulnerabilities

CVE-2011-1400

Published: Mar 25, 2011 | Modified: Aug 13, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
6.8 MODERATE
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute arbitrary code via a crafted TeX document.

Affected Software

Name Vendor Start Version End Version
Tex-common Debian 0.1 0.1
Tex-common Debian 0.2 0.2
Tex-common Debian 0.3 0.3
Tex-common Debian 0.4 0.4
Tex-common Debian 0.5 0.5
Tex-common Debian 0.6 0.6
Tex-common Debian 0.7 0.7
Tex-common Debian 0.8 0.8
Tex-common Debian 0.9 0.9
Tex-common Debian 0.10 0.10
Tex-common Debian 0.11 0.11
Tex-common Debian 0.12 0.12
Tex-common Debian 0.13 0.13
Tex-common Debian 0.14 0.14
Tex-common Debian 0.15 0.15
Tex-common Debian 0.16 0.16
Tex-common Debian 0.17 0.17
Tex-common Debian 0.18 0.18
Tex-common Debian 0.19 0.19
Tex-common Debian 0.20 0.20
Tex-common Debian 0.21 0.21
Tex-common Debian 0.22 0.22
Tex-common Debian 0.23 0.23
Tex-common Debian 0.24 0.24
Tex-common Debian 0.25 0.25
Tex-common Debian 0.26 0.26
Tex-common Debian 0.27 0.27
Tex-common Debian 0.28 0.28
Tex-common Debian 0.29 0.29
Tex-common Debian 0.30 0.30
Tex-common Debian 0.31 0.31
Tex-common Debian 0.32 0.32
Tex-common Debian 0.33 0.33
Tex-common Debian 0.34 0.34
Tex-common Debian 0.35 0.35
Tex-common Debian 0.36 0.36
Tex-common Debian 0.37 0.37
Tex-common Debian 0.38 0.38
Tex-common Debian 0.39 0.39
Tex-common Debian 0.40 0.40
Tex-common Debian 0.41 0.41
Tex-common Debian 0.42 0.42
Tex-common Debian 0.43 0.43
Tex-common Debian 0.44 0.44
Tex-common Debian 1.0 1.0
Tex-common Debian 1.1 1.1
Tex-common Debian 1.2 1.2
Tex-common Debian 1.3 1.3
Tex-common Debian 1.4 1.4
Tex-common Debian 1.5 1.5
Tex-common Debian 1.6 1.6
Tex-common Debian 1.7 1.7
Tex-common Debian 1.8 1.8
Tex-common Debian 1.9 1.9
Tex-common Debian 1.10 1.10
Tex-common Debian 1.11 1.11
Tex-common Debian 1.11.1 1.11.1
Tex-common Debian 1.11.2 1.11.2
Tex-common Debian 1.11.3 1.11.3
Tex-common Debian 1.12 1.12
Tex-common Debian 1.13 1.13
Tex-common Debian 1.14 1.14
Tex-common Debian 1.15 1.15
Tex-common Debian 1.16 1.16
Tex-common Debian 1.17 1.17
Tex-common Debian 1.18 1.18
Tex-common Debian 1.19 1.19
Tex-common Debian 1.20 1.20
Tex-common Debian 2.00 2.00
Tex-common Debian 2.01 2.01
Tex-common Debian 2.02 2.02
Tex-common Debian 2.03 2.03
Tex-common Debian 2.04 2.04
Tex-common Debian 2.05 2.05
Tex-common Debian 2.06 2.06
Tex-common Debian 2.07 2.07
Tex-common Debian 2.08 2.08
Ubuntu_linux Canonical 10.04 10.04
Ubuntu_linux Canonical 10.10 10.10
Debian_linux Debian * *
Tex-common Ubuntu dapper *
Tex-common Ubuntu lucid *
Tex-common Ubuntu maverick *
Tex-common Ubuntu upstream *

References