The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to gain privileges and clone arbitrary repositories.
Advisories
Source ID Title
EUVD EUVD EUVD-2013-4441 The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to gain privileges and clone arbitrary repositories.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-06T16:45:14.926Z

Reserved: 2013-06-12T00:00:00

Link: CVE-2013-4583

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-28T16:15:11.743

Modified: 2024-11-21T01:55:52.670

Link: CVE-2013-4583

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.