CVE-2014-1610
Published Jan 30, 2014
Last updated 8 years ago
Overview
- Description
- MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5, and 1.19.x before 1.19.11, when DjVu or PDF file upload support is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the page parameter to includes/media/DjVu.php; (2) the w parameter (aka width field) to thumb.php, which is not properly handled by includes/media/PdfHandler_body.php; and possibly unspecified vectors in (3) includes/media/Bitmap.php and (4) includes/media/ImageHandler.php.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6
- Impact score
- 6.4
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-20
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7C29D44-2964-483F-B672-27B5CE471DA6"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "172FEFE5-9900-49D0-9E14-2FA4A7912D23"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA3205F5-3A29-4D45-AC95-83174F8969BB"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5547DA02-3BEC-4278-A714-25CCB820AA79"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3E5609D-EC04-4088-9B61-ABDD256200F7"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B23B09BB-8F43-4D60-A37F-D8685584AF4B"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A8A3F38-9A86-4346-9337-5C2A1DED37C0"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "49CCC3B5-9BD4-40B4-AF1A-DF4B2A6DC12D"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "36DA1112-69AB-408A-886E-F248516FDE11"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA85F3B7-9CB4-481C-B1A5-AB95F81C4126"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.19.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A25C57E2-8E04-4A54-9211-C7B4B7CC4E89"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.21.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3DA12531-818E-4AD7-A3E7-467604775416"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.21.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E87AB00-90DD-4548-B23A-42673DDFD1D1"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.21.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01D8F235-2F1B-4198-A91E-B2723293AA36"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.21.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2A5F4A7-40E7-42D0-8482-647D0EC54AC7"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.22.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB117E2F-D4CD-4CED-BCEF-3C821A431F6A"
},
{
"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.22.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B461B44C-37D2-480B-9645-B7E8720416C3"
}
],
"operator": "OR"
}
]
}
]