PT-2017-14831 · Tin+2 · Tin+2
Published
2017-12-14
·
Updated
2024-08-05
·
CVE-2017-17520
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TIN version 2.4.1
Description
The issue concerns the
tools/url handler.pl script in TIN, which does not validate strings before launching the program specified by the BROWSER environment variable. This might allow remote attackers to conduct argument-injection attacks via a crafted URL. It is noted that this behavior might be intentional, as the documentation states that url handler.pl was designed to work with TIN, which only issues shell-escaped absolute URLs.Recommendations
For TIN version 2.4.1, consider validating strings before launching the program specified by the
BROWSER environment variable to prevent potential argument-injection attacks. As a temporary workaround, restrict the use of the BROWSER environment variable to minimize the risk of exploitation.Fix
Special Elements Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Debian
Tin