Home

CVE-2014-7209

Description

run-mailcap in the Debian mime-support package before 3.52-1+deb7u1 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.

Risk Information

Base Score
9.0
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.68

Associated Vulnerability

VulnerabilityOS Platform
MIME support programs (USN-2453-1) mime-support_3.54ubuntu1.1_all.debLinux
MIME support programs (USN-2453-1) mime-support_3.51-1ubuntu1.1_all.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234