CVE-2016-9949

Опубликовано: 17 дек. 2016

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Низкий

Описание

An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote attackers to execute arbitrary Python code.

Ссылки

http://www.securityfocus.com/bid/95011
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-3157-1
https://bugs.launchpad.net/apport/+bug/1648806
Issue Tracking
Patch
https://donncha.is/2016/12/compromising-ubuntu-desktop/
Exploit
Technical Description
Third Party Advisory
https://github.com/DonnchaC/ubuntu-apport-exploitation
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/40937/
http://www.securityfocus.com/bid/95011
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-3157-1
https://bugs.launchpad.net/apport/+bug/1648806
Issue Tracking
Patch
https://donncha.is/2016/12/compromising-ubuntu-desktop/
Exploit
Technical Description
Third Party Advisory
https://github.com/DonnchaC/ubuntu-apport-exploitation
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/40937/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apport_project:apport:*:*:*:*:*:*:*:*

Версия до 2.20.3 (включая)

Конфигурация 2

cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*

Версия до 12.10 (включая)

EPSS

Процентиль: 93%

0.0981

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

CVE-2016-9949

CVSS3: 7.8

ubuntu

около 9 лет назад

GHSA-5hh7-vqxx-v3cj

CVSS3: 7.8

github

больше 3 лет назад

EPSS

Процентиль: 93%

0.0981

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-94