HTTP: Gitlab-shell Code Execution

This signature detects attempts to exploit a known vulnerability against Gitlab. A successful attack can lead to arbitrary code execution.

Extended Description

The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as used in GitLab 5.0 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands via shell metacharacters in the public key.

Affected Products

Gitlab gitlab-shell

References

CVE: CVE-2013-4490

Short Name
HTTP:MISC:GITLAB-SH-EXEC
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2013-4490 Code Execution Gitlab-shell
Release Date
06/09/2015
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3761
False Positive
Unknown
Vendors

Gitlab

CVSS Score

6.5

Found a potential security threat?