cnvd - cnvd-2018-00686

cnvd-2018-00686

Vulnerability from cnvd

Title

Geomview参数注入漏洞

Description

Geomview是一款用于类Unix系统的交互式3D图形查看程序。该程序支持使用鼠标旋转、放大或缩小图形等。 Geomview 1.9.5版本中的common/help.c文件存在安全漏洞，该漏洞源于程序在启动程序之前，未验证字符串。远程攻击者可借助特制的URL利用该漏洞实施参数注入攻击。

Severity

中

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页更新： http://www.geomview.org/

Reference

https://security-tracker.debian.org/tracker/CVE-2017-17530

Impacted products

Name
Geomview Geomview 1.9.5

Show details on source website

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-17530"
    }
  },
  "description": "Geomview\u662f\u4e00\u6b3e\u7528\u4e8e\u7c7bUnix\u7cfb\u7edf\u7684\u4ea4\u4e92\u5f0f3D\u56fe\u5f62\u67e5\u770b\u7a0b\u5e8f\u3002\u8be5\u7a0b\u5e8f\u652f\u6301\u4f7f\u7528\u9f20\u6807\u65cb\u8f6c\u3001\u653e\u5927\u6216\u7f29\u5c0f\u56fe\u5f62\u7b49\u3002\r\n\r\nGeomview 1.9.5\u7248\u672c\u4e2d\u7684common/help.c\u6587\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5728\u542f\u52a8\u7a0b\u5e8f\u4e4b\u524d\uff0c\u672a\u9a8c\u8bc1\u5b57\u7b26\u4e32\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684URL\u5229\u7528\u8be5\u6f0f\u6d1e\u5b9e\u65bd\u53c2\u6570\u6ce8\u5165\u653b\u51fb\u3002",
  "discovererName": "unknown",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttp://www.geomview.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-00686",
  "openTime": "2018-01-10",
  "products": {
    "product": "Geomview Geomview 1.9.5"
  },
  "referenceLink": "https://security-tracker.debian.org/tracker/CVE-2017-17530",
  "serverity": "\u4e2d",
  "submitTime": "2017-12-18",
  "title": "Geomview\u53c2\u6570\u6ce8\u5165\u6f0f\u6d1e"
}

CVE-2017-17530 (GCVE-0-2017-17530)

Vulnerability from cvelistv5

Published

2017-12-14 16:00

Modified

2024-08-05 20:51

Severity ?

CWE

n/a

Summary

common/help.c in Geomview 1.9.5 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: this is disputed by a third party because no untrusted input can be used for the injection

References

URL

Tags

	https://security-tracker.debian.org/tracker/CVE-2017-17530	x_refsource_MISC
	https://bugs.gentoo.org/650894#c2	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T20:51:32.155Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://security-tracker.debian.org/tracker/CVE-2017-17530"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugs.gentoo.org/650894#c2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-12-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "common/help.c in Geomview 1.9.5 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: this is disputed by a third party because no untrusted input can be used for the injection"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-11T02:07:12",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://security-tracker.debian.org/tracker/CVE-2017-17530"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugs.gentoo.org/650894#c2"
        }
      ],
      "tags": [
        "disputed"
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-17530",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "** DISPUTED ** common/help.c in Geomview 1.9.5 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: this is disputed by a third party because no untrusted input can be used for the injection."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://security-tracker.debian.org/tracker/CVE-2017-17530",
              "refsource": "MISC",
              "url": "https://security-tracker.debian.org/tracker/CVE-2017-17530"
            },
            {
              "name": "https://bugs.gentoo.org/650894#c2",
              "refsource": "MISC",
              "url": "https://bugs.gentoo.org/650894#c2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-17530",
    "datePublished": "2017-12-14T16:00:00",
    "dateReserved": "2017-12-11T00:00:00",
    "dateUpdated": "2024-08-05T20:51:32.155Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.