Lucene search
GoogleOSV:CVE-2017-17521HistoryDec 14, 2017 - 4:29 p.m.
CVE-2017-17521
2017-12-1416:29:00
Google
osv.dev
8
uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534.
Related
ubuntucve
ubuntucve
CVE-2017-17521
2017-12-14 00:00:00
CVE-2017-17534
2017-12-14 00:00:00
prion
prion
Design/Logic Flaw
2017-12-14 16:29:00
Design/Logic Flaw
2017-12-14 16:29:00
debiancve
debiancve
CVE-2017-17521
2017-12-14 16:29:00
redhatcve
redhatcve
CVE-2017-17521
2017-12-14 20:49:40
cvelist
cvelist
CVE-2017-17534
2017-12-14 16:00:00
CVE-2017-17521
2017-12-14 16:00:00
nvd
nvd
CVE-2017-17521
2017-12-14 16:29:00
CVE-2017-17534
2017-12-14 16:29:01
cve
cve
CVE-2017-17534
2017-12-14 16:29:01
CVE-2017-17521
2017-12-14 16:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-05-23 07:50:21
nessus
nessus
RHEL 7 : fontforge (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : fontforge (Unpatched Vulnerability)
2024-06-03 00:00:00