[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

[3.5] mercurial: Multiples vulnerabilities (CVE-2017-9462, CVE-2017-1000115, CVE-2017-1000116)

ID: oval:org.secpod.oval:def:1800490Date: (C)2018-03-28   (M)2023-04-19
Class: PATCHFamily: unix




CVE-2017-9462: Python debugger accessible to authorized users In Mercurial before 4.1.3, "hg serve --stdio" allows remote authenticated users to launch the Python debugger, and consequently execute arbitrary code, by using --debugger as a repository name.

Platform:
Alpine Linux 3.5
Product:
mercurial
Reference:
7693
CVE-2017-9462
CVE-2017-1000115
CVE-2017-1000116
CVE    3
CVE-2017-1000115
CVE-2017-1000116
CVE-2017-9462
CPE    2
cpe:/a:atlassian:mercurial
cpe:/o:alpinelinux:alpine_linux:3.5

© SecPod Technologies