Candidate: CVE-2012-2085
PublicDate: 2012-08-28 17:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2085
Description:
 The exec_command function in common/helpers.py in Gajim before 0.15 allows
 user-assisted remote attackers to execute arbitrary commands via shell
 metacharacters in an href attribute.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668038
 https://trac.gajim.org/ticket/7031
 https://bugs.launchpad.net/ubuntu/+source/gajim/+bug/984616
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_gajim:
upstream_gajim: released (0.15-1)
hardy_gajim: ignored (reached end-of-life)
lucid_gajim: released (0.13-0ubuntu2.1)
maverick_gajim: ignored (reached end-of-life)
natty_gajim: released (0.13.4-3ubuntu2.1)
oneiric_gajim: released (0.14.1-1ubuntu1.1)
precise_gajim: released (0.15-1)
devel_gajim: released (0.15-1)