CVE-2016-9951 — MEDIUM (6.5)

Q: How severe is CVE-2016-9951?

CVE-2016-9951 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-9951?

Check the references section above for vendor advisories and patch information. Affected products include: Apport Project Apport.

Vulnerability Description

An issue was discovered in Apport before 2.20.4. A malicious Apport crash file can contain a restart command in `RespawnCommand` or `ProcCmdline` fields. This command will be executed if a user clicks the Relaunch button on the Apport prompt from the malicious crash file. The fix is to only show the Relaunch button on Apport crash files generated by local systems. The Relaunch button will be hidden when crash files are opened directly in Apport-GTK.

CVSS Score

6.5

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Apport Project	Apport	<= 2.20.3

Related Weaknesses (CWE)

CWE-284

References

http://www.securityfocus.com/bid/95011Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-3157-1
https://bugs.launchpad.net/apport/+bug/1648806Issue TrackingPatch
https://donncha.is/2016/12/compromising-ubuntu-desktop/ExploitTechnical DescriptionThird Party Advisory
https://github.com/DonnchaC/ubuntu-apport-exploitationIssue TrackingThird Party Advisory
https://www.exploit-db.com/exploits/40937/
http://www.securityfocus.com/bid/95011Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-3157-1
https://bugs.launchpad.net/apport/+bug/1648806Issue TrackingPatch
https://donncha.is/2016/12/compromising-ubuntu-desktop/ExploitTechnical DescriptionThird Party Advisory
https://github.com/DonnchaC/ubuntu-apport-exploitationIssue TrackingThird Party Advisory
https://www.exploit-db.com/exploits/40937/

FAQ

What is CVE-2016-9951?

CVE-2016-9951 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An issue was discovered in Apport before 2.20.4. A malicious Apport crash file can contain a restart command in `RespawnCommand` or `ProcCmdline` fields. This command will be executed if a user clicks...

How severe is CVE-2016-9951?

CVE-2016-9951 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-9951?

Check the references section above for vendor advisories and patch information. Affected products include: Apport Project Apport.