CVE-2011-4929

Redmine <1.0.5 - RCE

Title source: llm

Description

Unspecified vulnerability in the bazaar repository adapter in Redmine 0.9.x and 1.0.x before 1.0.5 allows remote attackers to execute arbitrary commands via unknown vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/41695

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/redmine_scm_exec.rb

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://www.redmine.org/news/49

[Third Party Advisory] http://www.debian.org/security/2011/dsa-2261

[Mailing List] http://www.openwall.com/lists/oss-security/2012/01/06/5

[Mailing List] http://www.openwall.com/lists/oss-security/2012/01/06/7

Scores

EPSS 0.7361

EPSS Percentile 98.8%

Details

Status published

Products (12)

redmine/redmine 0.9.0

redmine/redmine 0.9.1

redmine/redmine 0.9.2

redmine/redmine 0.9.3

redmine/redmine 0.9.4

redmine/redmine 0.9.5

redmine/redmine 0.9.6

redmine/redmine 1.0.0

redmine/redmine 1.0.1

redmine/redmine 1.0.2

... and 2 more

Published Oct 08, 2012

Tracked Since Feb 18, 2026