CVE-2017-17512

HIGH

sensible-utils < 0.0.11 - Argument Injection via BROWSER Environment Variable

Title source: llm

Description

sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by a --proxy-pac-file argument.

References (5)

Core 5

Core References

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3584-1/

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2017/12/msg00012.html

Release Notes, Vendor Advisory x_refsource_misc

http://metadata.ftp-master.debian.org/changelogs/main/s/sensible-utils/sensible-utils_0.0.11_changelog

Exploit, Issue Tracking, Third Party Advisory x_refsource_misc

https://bugs.debian.org/881767

Issue Tracking, Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2017/dsa-4071

Scores

CVSS v3 8.8

EPSS 0.0222

EPSS Percentile 80.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-74

Status published

Products (1)

sensible-utils_project/sensible-utils < 0.0.11

Published Dec 11, 2017

Tracked Since Feb 18, 2026