Vulnerability Name:

CVE-2011-1400 (CCN-66249)

Assigned:2011-03-23
Published:2011-03-23
Updated:2018-08-13
Summary:The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute arbitrary code via a crafted TeX document.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-16
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2011-1400

Source: CCN
Type: Debian Packages Web Site
Package: tex-common (2.08.1) [security]

Source: SECUNIA
Type: Vendor Advisory
43816

Source: SECUNIA
Type: Vendor Advisory
43973

Source: CONFIRM
Type: UNKNOWN
http://svn.debian.org/wsvn/debian-tex/?op=comp&compare[]=%2Ftex-common%2Ftrunk@4781&compare[]=%2Ftex-common%2Ftrunk@4812

Source: CONFIRM
Type: UNKNOWN
http://svn.debian.org/wsvn/debian-tex/tex-common/trunk/?op=log

Source: DEBIAN
Type: UNKNOWN
DSA-2198

Source: DEBIAN
Type: DSA-2198
tex-common -- insufficient input sanitization

Source: CCN
Type: OSVDB ID: 74630
tex-common conf/texmf.d/95NonPath.cnf shell_escape_commands Directive Crafted TeX Document Remote Code Execution

Source: BID
Type: UNKNOWN
46986

Source: CCN
Type: BID-46986
Debian tex-common 'shell_escape_commands' Directive Remote Code Execution Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1103-1

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0731

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0861

Source: XF
Type: UNKNOWN
texcommon-shellescapecommands-ce(66249)

Source: XF
Type: UNKNOWN
texcommon-shellescapecommands-ce(66249)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:debian:tex-common:0.1:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.2:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.3:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.4:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.5:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.6:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.7:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.8:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.9:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.10:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.11:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.12:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.13:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.14:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.15:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.16:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.17:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.18:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.19:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.20:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.21:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.22:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.23:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.24:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.25:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.26:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.27:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.28:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.29:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.30:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.31:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.32:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.33:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.34:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.35:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.36:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.37:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.38:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.39:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.40:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.41:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.42:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.43:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:0.44:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.3:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.4:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.5:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.6:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.7:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.8:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.9:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.10:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.11:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.11.1:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.11.2:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.11.3:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.12:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.13:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.14:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.15:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.16:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.17:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.18:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.19:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:1.20:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.00:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.01:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.02:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.03:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.04:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.05:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.06:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.07:*:*:*:*:*:*:*
  • OR cpe:/a:debian:tex-common:2.08:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:13763
    P
    		USN-1103-1 -- tex-common vulnerability
    2014-06-30
    oval:org.mitre.oval:def:12957
    P
    		DSA-2198-1 tex-common -- insufficient input sanitisation
    2014-06-23
    BACK
    debian tex-common 0.1
    debian tex-common 0.2
    debian tex-common 0.3
    debian tex-common 0.4
    debian tex-common 0.5
    debian tex-common 0.6
    debian tex-common 0.7
    debian tex-common 0.8
    debian tex-common 0.9
    debian tex-common 0.10
    debian tex-common 0.11
    debian tex-common 0.12
    debian tex-common 0.13
    debian tex-common 0.14
    debian tex-common 0.15
    debian tex-common 0.16
    debian tex-common 0.17
    debian tex-common 0.18
    debian tex-common 0.19
    debian tex-common 0.20
    debian tex-common 0.21
    debian tex-common 0.22
    debian tex-common 0.23
    debian tex-common 0.24
    debian tex-common 0.25
    debian tex-common 0.26
    debian tex-common 0.27
    debian tex-common 0.28
    debian tex-common 0.29
    debian tex-common 0.30
    debian tex-common 0.31
    debian tex-common 0.32
    debian tex-common 0.33
    debian tex-common 0.34
    debian tex-common 0.35
    debian tex-common 0.36
    debian tex-common 0.37
    debian tex-common 0.38
    debian tex-common 0.39
    debian tex-common 0.40
    debian tex-common 0.41
    debian tex-common 0.42
    debian tex-common 0.43
    debian tex-common 0.44
    debian tex-common 1.0
    debian tex-common 1.1
    debian tex-common 1.2
    debian tex-common 1.3
    debian tex-common 1.4
    debian tex-common 1.5
    debian tex-common 1.6
    debian tex-common 1.7
    debian tex-common 1.8
    debian tex-common 1.9
    debian tex-common 1.10
    debian tex-common 1.11
    debian tex-common 1.11.1
    debian tex-common 1.11.2
    debian tex-common 1.11.3
    debian tex-common 1.12
    debian tex-common 1.13
    debian tex-common 1.14
    debian tex-common 1.15
    debian tex-common 1.16
    debian tex-common 1.17
    debian tex-common 1.18
    debian tex-common 1.19
    debian tex-common 1.20
    debian tex-common 2.00
    debian tex-common 2.01
    debian tex-common 2.02
    debian tex-common 2.03
    debian tex-common 2.04
    debian tex-common 2.05
    debian tex-common 2.06
    debian tex-common 2.07
    debian tex-common 2.08
    canonical ubuntu linux 10.04 -
    canonical ubuntu linux 10.10
    debian debian linux *