The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute arbitrary code via a crafted TeX document.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2011-03-25T19:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2011-03-10T00:00:00
Link: CVE-2011-1400
JSON object: View
NVD Information
Status : Modified
Published: 2011-03-25T19:55:01.607
Modified: 2023-11-07T02:07:00.757
Link: CVE-2011-1400
JSON object: View
Redhat Information
No data.
CWE