CVE-2014-0479 Information

Description

reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compare_versions and reportbug/checkversions.py.

Reference

http://secunia.com/advisories/59896 http://www.debian.org/security/2014/dsa-2997 http://www.osvdb.org/109858 http://www.securityfocus.com/bid/69055 https://bugs.launchpad.net/ubuntu/+source/reportbug/+bug/1353046 https://exchange.xforce.ibmcloud.com/vulnerabilities/95149