Executive Summary

Informations
NameCVE-2016-3105First vendor Publication2016-05-09
VendorCveLast vendor Modification2017-06-30

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The convert extension in Mercurial before 3.8 might allow context-dependent attackers to execute arbitrary code via a crafted git repository name.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3105

CWE : Common Weakness Enumeration

%idName
100 %CWE-284Access Control (Authorization) Issues

CPE : Common Platform Enumeration

TypeDescriptionCount
Application84
Os1

Nessus® Vulnerability Scanner

DateDescription
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2016-0011.nasl - Type : ACT_GATHER_INFO
2016-12-07Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201612-19.nasl - Type : ACT_GATHER_INFO
2016-05-20Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-609.nasl - Type : ACT_GATHER_INFO
2016-05-09Name : The remote Debian host is missing a security update.
File : debian_DLA-459.nasl - Type : ACT_GATHER_INFO
2016-05-06Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3570.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2016-123-01.nasl - Type : ACT_GATHER_INFO
2016-05-03Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_78abc0220fee11e69a1c0014a5a57822.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/90536
CONFIRM https://selenic.com/hg/rev/a56296f55a5e
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_3.8_.2F_3.8.1_.282016-5...
DEBIAN http://www.debian.org/security/2016/dsa-3570
GENTOO https://security.gentoo.org/glsa/201612-19
SLACKWARE http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&...
SUSE http://lists.opensuse.org/opensuse-updates/2016-05/msg00082.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2019-05-01 12:07:22
  • Multiple Updates
2017-07-01 09:23:26
  • Multiple Updates
2016-12-08 13:25:11
  • Multiple Updates
2016-12-01 09:24:18
  • Multiple Updates
2016-11-29 00:26:06
  • Multiple Updates
2016-05-21 13:27:23
  • Multiple Updates
2016-05-11 00:25:53
  • Multiple Updates
2016-05-10 13:30:38
  • Multiple Updates
2016-05-10 05:28:37
  • First insertion