CVE-2015-5705

Published: 06 September 2017

Argument injection vulnerability in devscripts before 2.15.7 allows remote attackers to write to arbitrary files via a crafted symlink and crafted filename.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
devscripts
Launchpad, Ubuntu, Debian
Upstream
Released (2.15.8)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(pre-2.15.5)