PT-2017-14846 · Mercurial Scm+2 · Mercurial+2

Published

2017-12-11

Updated

2019-10-03

CVE-2017-17536

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Phabricator versions prior to 2017-11-10

Description The issue allows remote attackers to execute arbitrary code by using the web UI to browse a branch whose name begins with a --config= or --debugger= substring, due to the failure to block the --config and --debugger flags to the Mercurial hg program.

Recommendations For versions prior to 2017-11-10, update to a version released after 2017-11-10 to resolve the issue. As a temporary workaround, consider restricting access to the Mercurial hg program or disabling the web UI functionality that allows browsing branches with specially crafted names.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-17536

Affected Products

Debian

Mercurial

Phabricator

PT-2017-14846 · Mercurial Scm+2 · Mercurial+2

CVE-2017-17536

Related Identifiers

Affected Products

References · 9