2 matches found
White_dune Parameter Injection Vulnerability
Whitedune aka whitedune is an open source editor and viewer for VRML97 files. A security vulnerability exists in the swt/motif/browser.c file in Whitedune version 0.30.10, which stems from the program failing to validate strings before launching the program. A remote attacker can exploit the...
UBUNTU-CVE-2017-17518
DISPUTED swt/motif/browser.c in Whitedune aka whitedune 0.30.10 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: This issue is being disputed as n...