Executive Summary

Informations
NameCVE-2016-3069First vendor Publication2016-04-13
VendorCveLast vendor Modification2018-10-30

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3069

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application83
Application1
Os2
Os2
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os3

Nessus® Vulnerability Scanner

DateDescription
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2016-0011.nasl - Type : ACT_GATHER_INFO
2017-05-01Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2016-1019.nasl - Type : ACT_GATHER_INFO
2016-12-07Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201612-19.nasl - Type : ACT_GATHER_INFO
2016-05-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2016-697.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2016-0706.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2016-0706.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2016-0706.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20160502_mercurial_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2016-04-22Name : The remote Fedora host is missing a security update.
File : fedora_2016-74f9a65b3a.nasl - Type : ACT_GATHER_INFO
2016-04-18Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-467.nasl - Type : ACT_GATHER_INFO
2016-04-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-452.nasl - Type : ACT_GATHER_INFO
2016-04-08Name : The remote Fedora host is missing a security update.
File : fedora_2016-79604dde9f.nasl - Type : ACT_GATHER_INFO
2016-04-08Name : The remote Fedora host is missing a security update.
File : fedora_2016-b7f1f8e3bf.nasl - Type : ACT_GATHER_INFO
2016-04-07Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3542.nasl - Type : ACT_GATHER_INFO
2016-04-05Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2016-092-01.nasl - Type : ACT_GATHER_INFO
2016-04-01Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_e1085b15f60911e5a2300014a5a57822.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-295209...
https://selenic.com/repo/hg-stable/rev/197eed39e3d5
https://selenic.com/repo/hg-stable/rev/80cac1de6aea
https://selenic.com/repo/hg-stable/rev/ae279d4a19e9
https://selenic.com/repo/hg-stable/rev/b732e7f2aba4
https://selenic.com/repo/hg-stable/rev/cdda7b96afff
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_3.7.3_.282016-3-29.29
DEBIAN http://www.debian.org/security/2016/dsa-3542
FEDORA http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181505.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181542.html
GENTOO https://security.gentoo.org/glsa/201612-19
REDHAT http://rhn.redhat.com/errata/RHSA-2016-0706.html
SUSE http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00016.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00017.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00018.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00043.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
DateInformations
2019-05-01 12:07:21
  • Multiple Updates
2018-10-31 00:21:05
  • Multiple Updates
2018-01-26 12:07:15
  • Multiple Updates
2017-07-01 09:23:26
  • Multiple Updates
2017-05-02 13:24:37
  • Multiple Updates
2016-12-08 13:25:11
  • Multiple Updates
2016-10-04 09:24:12
  • Multiple Updates
2016-09-14 05:22:14
  • Multiple Updates
2016-09-13 09:23:23
  • Multiple Updates
2016-08-01 21:22:09
  • Multiple Updates
2016-07-29 09:24:33
  • Multiple Updates
2016-06-28 19:57:48
  • Multiple Updates
2016-05-05 13:30:53
  • Multiple Updates
2016-05-04 13:29:44
  • Multiple Updates
2016-04-26 13:27:45
  • Multiple Updates
2016-04-19 13:30:03
  • Multiple Updates
2016-04-18 21:26:17
  • Multiple Updates
2016-04-14 13:26:54
  • Multiple Updates
2016-04-13 21:26:18
  • First insertion