Bug#567039: trac-git: Arbitrary command execution

* Stefan Göbel: > Package: trac-git > Version: 0.0.20080710-3 > Severity: grave > Tags: patch security > Justification: user security hole > > > The trac-git package in Debian Lenny - if enabled in Trac - allows a > remote attacker to execute arbitrary commands on the system with the > rights of t

Bug#567039: trac-git: Arbitrary command execution

Hi. On Tue, Jan 26, 21:49:42 +0100, Stefan Göbel wrote: > The trac-git package in Debian Lenny - if enabled in Trac - allows a > remote attacker to execute arbitrary commands on the system with the > rights of the user running Trac. The attacker must have the rights to > browse the repository in o

Bug#567039: trac-git: Arbitrary command execution

Package: trac-git Version: 0.0.20080710-3 Severity: grave Tags: patch security Justification: user security hole The trac-git package in Debian Lenny - if enabled in Trac - allows a remote attacker to execute arbitrary commands on the system with the rights of the user running Trac. The attacker