CVE-2007-3659

Name of the Vulnerable Software and Affected Versions FreeWRL version 1.19.3

Description A buffer overflow issue exists in the doBrowserAction function, allowing local users to potentially execute arbitrary code through a crafted BROWSER environment variable. It is unclear whether this issue can cross privilege boundaries.

Recommendations For FreeWRL version 1.19.3, as a temporary workaround, consider restricting access to the doBrowserAction function until a patch is available. Avoid using crafted BROWSER environment variables in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.