CVE-2013-7050
- Source
- https://cve.org/CVERecord?id=CVE-2013-7050
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2013-7050.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2013-7050
- Downstream
- Withdrawn
- 2026-01-27T04:11:52.726622Z
- Published
- 2013-12-13T18:07:54Z
- Modified
- 2026-01-27T04:11:52.726622Z
- Summary
- [none]
- Details
-
The getmainsourcedir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCANEXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a directory name.
- References
-
- http://seclists.org/oss-sec/2013/q4/470
- https://bugzilla.redhat.com/show_bug.cgi?id=1040266
- http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git%3Ba=commitdiff%3Bh=91f05b5
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731849
- http://osvdb.org/100855
- http://seclists.org/oss-sec/2013/q4/486
- http://www.securityfocus.com/bid/64241
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89666