Lynx 'mailcap' 和 'mime.type'文件本地代码执行漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1116609 漏洞类型 其他
发布时间 2008-11-03 更新时间 2009-01-19
CVE编号 CVE-2006-7234 CNNVD-ID CNNVD-200810-450
漏洞平台 Linux CVSS评分 4.6
|漏洞来源
https://www.exploit-db.com/exploits/32530
https://www.securityfocus.com/bid/31917
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200810-450
|漏洞详情
Lynx存在不可信的搜索路径漏洞,本地用户可以借助当前工作的目录中的恶意的.mailcap和mime.types文件来执行任意代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/31917/info

Lynx is prone to a local code-execution vulnerability.

Successful exploits may allow attackers to execute arbitrary code within the context of the user running the affected application.

Versions prior to Lynx 2.8.6rel.4 are affected.

.mime.types:
application/x-bug bug

.mailcap:
application/x-bug; xmessage 'Hello, World!'
|受影响的产品
University of Kansas Lynx 2.8.6 dev9 University of Kansas Lynx 2.8.6 dev8 University of Kansas Lynx 2.8.6 dev7 University of Kansas Lynx 2.8.6 dev6 University of Kansas Lynx 2.8.6 dev5
|参考资料

来源:bugzilla.redhat.com
链接:https://bugzilla.redhat.com/show_bug.cgi?id=214205
来源:XF
名称:lynx-mailcap-mimetype-code-execution(46132)
链接:http://xforce.iss.net/xforce/xfdb/46132
来源:SECTRACK
名称:1021107
链接:http://www.securitytracker.com/id?1021107
来源:BID
名称:31917
链接:http://www.securityfocus.com/bid/31917
来源:REDHAT
名称:RHSA-2008:0965
链接:http://www.redhat.com/support/errata/RHSA-2008-0965.html
来源:MLIST
名称:[oss-security]20081025CVErequest:lynx(old).mailcaphandlingflaw
链接:http://www.openwall.com/lists/oss-security/2008/10/25/3
来源:MANDRIVA
名称:MDVSA-2008:217
链接:http://www.mandriva.com/security/advisories?name=MDVSA-2008:217
来源:SECUNIA
名称:33568
链接:http://secunia.com/advisories/33568
来源:SECUNIA
名称:32416
链接:http://secunia.com/advisories/32416
来源:SECUNIA
名称:32407
链接:http://secunia.com/advisories/32407
来源:SUSE
名称:SUSE-SR:2009:002
链接:http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
来源:bugs.debian.org
链接:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949