Security News > 2017 > July > Critical Code Injection Flaw In Gnome File Manager Leaves Linux Users Open to Hacking (The Hackers News)

Critical Code Injection Flaw In Gnome File Manager Leaves Linux Users Open to Hacking (The Hackers News)
2017-07-20 03:54

A security researcher has discovered a code injection vulnerability in the thumbnail handler component of GNOME Files file manager that could allow hackers to execute malicious code on targeted Linux machines. Dubbed Bad Taste, the vulnerability (CVE-2017-11421) was discovered by German researcher Nils Dagsson Moskopp, who also released proof-of-concept code on his blog to demonstrate the


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/TNdGvBoGf_o/linux-gnome-vulnerability.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2017-07-18 CVE-2017-11421 Code Injection vulnerability in Gnome-Exe-Thumbnailer Project Gnome-Exe-Thumbnailer 0.9.4
gnome-exe-thumbnailer before 0.9.5 is prone to a VBScript Injection when generating thumbnails for MSI files, aka the "Bad Taste" issue.
local
low complexity
gnome-exe-thumbnailer-project CWE-94
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Linux 11 64 2602 1595 67 4328
Gnome 56 5 65 74 15 159