CVE-2017-12904

Related Files

Ubuntu Security Notice USN-4585-1

Posted Oct 16, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4585-1 - It was discovered that Newsbeuter didn't handle the command line input properly. An remote attacker could use it to ran remote code by crafting a special input file. It was discovered that Newsbeuter didn't handle metacharacters in its filename properly. An remote attacker could use it to ran remote code by crafting a special filename.

tags | advisory, remote

systems | linux, ubuntu

advisories | CVE-2017-12904, CVE-2017-14500

SHA-256 | c447a0aad4e9947db086e7d4049ea7922567dcab57422db39e7b39ab45b28b73

Download | Favorite | View

Gentoo Linux Security Advisory 201801-18

Posted Jan 17, 2018

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-18 - Insufficient input validation in Newsbeuter may allow remote attackers to execute arbitrary shell commands. Versions less than 2.9-r3 are affected.

tags | advisory, remote, arbitrary, shell

systems | linux, gentoo

advisories | CVE-2017-12904

SHA-256 | 4866b556dae1699096f48ecd4f1ce53d0bd37e1adf012517d700256724a096d2

Download | Favorite | View