CVE-2018-20167

Name of the Vulnerable Software and Affected Versions Terminology versions prior to 1.3.1

Description The issue allows Remote Code Execution due to the mishandling of popmedia. This can be demonstrated by an unsafe command, such as "cat README.md", when a specific sequence is used. A popmedia control sequence can enable the malicious execution of executable file formats registered in the X desktop share MIME types. The sequence defers unknown file types to the handle unknown media() function, which executes xdg-open against the specified filename. This allows executable file formats with a registered shared MIME type to be executed. An attacker can achieve remote code execution by introducing an executable file and a plain text file containing the control sequence, for example, through a fake software project. When the control sequence is rendered, the executable file will be run.

Recommendations For versions prior to 1.3.1, update to version 1.3.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the handle unknown media() function or disabling the execution of unknown file types through xdg-open until a patch is available. Avoid using the xdg-open command for unknown file types in the affected API endpoint until the issue is resolved.