CVE-2012-2085

EPSS 0.64%

gajim - regression

Published: 8/28/2012Modified: 4/28/2026

Description

The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.

Affected packages (3)

Debian/gajimfrom 0, < 0.15-1
Debian/gajimfrom 0, < 0.13.4-3+squeeze2
Debian/gajimfrom 0, < 0.13.4-3+squeeze3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-2085