Vulnerability Description
sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by a --proxy-pac-file argument.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sensible-Utils Project | Sensible-Utils | < 0.0.11 |
Related Weaknesses (CWE)
References
- http://metadata.ftp-master.debian.org/changelogs/main/s/sensible-utils/sensible-Release NotesVendor Advisory
- https://bugs.debian.org/881767ExploitIssue TrackingThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2017/12/msg00012.html
- https://usn.ubuntu.com/3584-1/
- https://www.debian.org/security/2017/dsa-4071Issue TrackingThird Party Advisory
- http://metadata.ftp-master.debian.org/changelogs/main/s/sensible-utils/sensible-Release NotesVendor Advisory
- https://bugs.debian.org/881767ExploitIssue TrackingThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2017/12/msg00012.html
- https://usn.ubuntu.com/3584-1/
- https://www.debian.org/security/2017/dsa-4071Issue TrackingThird Party Advisory
FAQ
What is CVE-2017-17512?
CVE-2017-17512 is a vulnerability with a CVSS score of 8.8 (HIGH). sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument...
How severe is CVE-2017-17512?
CVE-2017-17512 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-17512?
Check the references section above for vendor advisories and patch information. Affected products include: Sensible-Utils Project Sensible-Utils.