CVE-2009-4015
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allows remote attackers to execute arbitrary commands via shell metacharacters in filename arguments.
Lintian v1.23.x anterior a v1.23.28, v1.24.x anterior a v1.24.2.1, y v2.x anterior a v2.3.2 permite a atacantes remotos ejecutar comandos arbitrarios mediante metacaracteres del interprete de comandos (shell) en los argumentos de nombre de archivo.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-11-19 CVE Reserved
- 2010-02-02 CVE Published
- 2024-09-17 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=c8d01f062b3e5137cf65196760b079a855c75e00 | X_refsource_confirm | |
| http://git.debian.org/?p=lintian/lintian.git%3Ba=commit%3Bh=fbe0c92b2ef7e360d13414bf40d6af5507d0c86d | X_refsource_confirm | |
| http://packages.debian.org/changelogs/pool/main/l/lintian/lintian_2.3.2/changelog | X_refsource_confirm | |
| http://packages.qa.debian.org/l/lintian/news/20100128T015554Z.html | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.securityfocus.com/bid/37975 | 2023-11-07 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/38375 | 2023-11-07 | |
| http://secunia.com/advisories/38379 | 2023-11-07 | |
| http://www.debian.org/security/2010/dsa-1979 | 2023-11-07 | |
| http://www.ubuntu.com/usn/USN-891-1 | 2023-11-07 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.0 Search vendor "Debian" for product "Lintian" and version "1.23.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.1 Search vendor "Debian" for product "Lintian" and version "1.23.1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.2 Search vendor "Debian" for product "Lintian" and version "1.23.2" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.3 Search vendor "Debian" for product "Lintian" and version "1.23.3" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.4 Search vendor "Debian" for product "Lintian" and version "1.23.4" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.5 Search vendor "Debian" for product "Lintian" and version "1.23.5" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.6 Search vendor "Debian" for product "Lintian" and version "1.23.6" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.7 Search vendor "Debian" for product "Lintian" and version "1.23.7" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.8 Search vendor "Debian" for product "Lintian" and version "1.23.8" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.9 Search vendor "Debian" for product "Lintian" and version "1.23.9" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.10 Search vendor "Debian" for product "Lintian" and version "1.23.10" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.11 Search vendor "Debian" for product "Lintian" and version "1.23.11" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.12 Search vendor "Debian" for product "Lintian" and version "1.23.12" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.13 Search vendor "Debian" for product "Lintian" and version "1.23.13" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.14 Search vendor "Debian" for product "Lintian" and version "1.23.14" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.15 Search vendor "Debian" for product "Lintian" and version "1.23.15" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.16 Search vendor "Debian" for product "Lintian" and version "1.23.16" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.17 Search vendor "Debian" for product "Lintian" and version "1.23.17" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.18 Search vendor "Debian" for product "Lintian" and version "1.23.18" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.19 Search vendor "Debian" for product "Lintian" and version "1.23.19" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.20 Search vendor "Debian" for product "Lintian" and version "1.23.20" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.22 Search vendor "Debian" for product "Lintian" and version "1.23.22" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.23 Search vendor "Debian" for product "Lintian" and version "1.23.23" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.24 Search vendor "Debian" for product "Lintian" and version "1.23.24" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.25 Search vendor "Debian" for product "Lintian" and version "1.23.25" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.26 Search vendor "Debian" for product "Lintian" and version "1.23.26" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.27 Search vendor "Debian" for product "Lintian" and version "1.23.27" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.23.28 Search vendor "Debian" for product "Lintian" and version "1.23.28" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.24.0 Search vendor "Debian" for product "Lintian" and version "1.24.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.24.1 Search vendor "Debian" for product "Lintian" and version "1.24.1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 1.24.2 Search vendor "Debian" for product "Lintian" and version "1.24.2" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.0-rc1 Search vendor "Debian" for product "Lintian" and version "2.0-rc1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.0-rc2 Search vendor "Debian" for product "Lintian" and version "2.0-rc2" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.0 Search vendor "Debian" for product "Lintian" and version "2.1.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.1 Search vendor "Debian" for product "Lintian" and version "2.1.1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.2 Search vendor "Debian" for product "Lintian" and version "2.1.2" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.3 Search vendor "Debian" for product "Lintian" and version "2.1.3" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.4 Search vendor "Debian" for product "Lintian" and version "2.1.4" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.5 Search vendor "Debian" for product "Lintian" and version "2.1.5" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.1.6 Search vendor "Debian" for product "Lintian" and version "2.1.6" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.0 Search vendor "Debian" for product "Lintian" and version "2.2.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.1 Search vendor "Debian" for product "Lintian" and version "2.2.1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.2 Search vendor "Debian" for product "Lintian" and version "2.2.2" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.3 Search vendor "Debian" for product "Lintian" and version "2.2.3" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.4 Search vendor "Debian" for product "Lintian" and version "2.2.4" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.5 Search vendor "Debian" for product "Lintian" and version "2.2.5" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.6 Search vendor "Debian" for product "Lintian" and version "2.2.6" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.7 Search vendor "Debian" for product "Lintian" and version "2.2.7" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.8 Search vendor "Debian" for product "Lintian" and version "2.2.8" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.9 Search vendor "Debian" for product "Lintian" and version "2.2.9" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.10 Search vendor "Debian" for product "Lintian" and version "2.2.10" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.11 Search vendor "Debian" for product "Lintian" and version "2.2.11" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.12 Search vendor "Debian" for product "Lintian" and version "2.2.12" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.13 Search vendor "Debian" for product "Lintian" and version "2.2.13" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.14 Search vendor "Debian" for product "Lintian" and version "2.2.14" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.15 Search vendor "Debian" for product "Lintian" and version "2.2.15" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.16 Search vendor "Debian" for product "Lintian" and version "2.2.16" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.2.18 Search vendor "Debian" for product "Lintian" and version "2.2.18" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.3.0 Search vendor "Debian" for product "Lintian" and version "2.3.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Lintian Search vendor "Debian" for product "Lintian" | 2.3.1 Search vendor "Debian" for product "Lintian" and version "2.3.1" | - |
Affected
| ||||||