CVE-2011-4192

Loading...

General

Score:7.5/10.0
Severity:High
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 16/04/14 - Updated on 17/04/14

Description

kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands as demonstrated by "double quotes in kiwi_oemtitle of .profile."

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2011-4192

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
susekiwi
susestudio_extension_for_system_z
susestudio_onsite

Share this vulnerability with:

Twitter Facebook LinkedIn Mail