logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2017-17530

Description

** DISPUTED ** common/help.c in Geomview 1.9.5 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: this is disputed by a third party because no untrusted input can be used for the injection.


Affected Package


OS OS Version Package Name Package Version
ubuntu 18.04 geomview any
ubuntu 20.04 geomview any
ubuntu 22.04 geomview any
ubuntu upstream geomview any
ubuntu 14.04 geomview any
ubuntu upstream geomview any
ubuntu 16.04 geomview any

Related