CVE-2017-16544 — Vulnetix

Try Vulnetix Request Demo

CVE-2017-16544 PUBLISHED

In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any escape sequence in the terminal. This could potentially result in code execution, arbitrary file writes, or other attacks.

EPSS 3.31% · 87.2th percentile

Risk Scores

EPSS Score

3.31%

87.2th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	busybox	0, 1:1.20.0-8.1ubuntu1, 1:1.20.0-9ubuntu1
Ubuntu:18.04:LTS	busybox	1:1.27.2-1ubuntu3, 0, 1:1.22.0-19ubuntu2
Ubuntu:16.04:LTS	busybox	1:1.22.0-15ubuntu1, 0

Timeline

Nov 20, 2017 CVE Published
Mar 15, 2020 PoC Published
Aug 28, 2020 PoC Published
Sep 4, 2020 PoC Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Jun 28, 2021 PoC Published
Aug 19, 2021 PoC Published
Oct 24, 2021 EPSS Score
Dec 11, 2021 PoC Published
Dec 13, 2021 PoC Published
Dec 18, 2021 PoC Published

References

https://ubuntu.com/security/CVE-2017-16544 third-party-advisory
https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/ third-party-advisory
https://ubuntu.com/security/notices/USN-3935-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2017-16544 third-party-advisory

Open in Interactive Console →