Note:
This project will be discontinued after December 13, 2021. [more]
2014-09-18
GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during installation of a VirtualBox extension pack.
Products | Gksu |
Type | Permissions, Privileges, and Access Controls (CWE-264) |
First patch | - None (likely due to unavailable code) |
Links |
• http://savannah.nongnu.org/bugs/?40023
• https://launchpad.net/bugs/1186676 • https://community.rapid7.com/community/metasploit/blog/2014/07/07/virtualbox-filename-command-execution-via-gksu • https://security.gentoo.org/glsa/201812-10 |