CVE-2014-8517

Published: Nov 17, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a | (pipe) character at the end of an HTTP redirect.

Affected (25)

Products: Apple: Mac Os X · Netbsd: Netbsd

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.10.0
Apple Mac Os X	Version 10.10.1
Apple Mac Os X	Version 10.8.5
Apple Mac Os X	Version 10.9.5

Configuration B

21 vulnerable

Vulnerable Software	Affected Versions
Netbsd Netbsd	Version 5.1.1
Netbsd Netbsd	Version 5.1.2
Netbsd Netbsd	Version 5.1.3
Netbsd Netbsd	Version 5.1.4
Netbsd Netbsd	Version 5.1
Netbsd Netbsd	Version 5.2.1
Netbsd Netbsd	Version 5.2.2
Netbsd Netbsd	Version 5.2
Netbsd Netbsd	Version 6.0.1
Netbsd Netbsd	Version 6.0.2
Netbsd Netbsd	Version 6.0.3
Netbsd Netbsd	Version 6.0.4
Netbsd Netbsd	Version 6.0.5
Netbsd Netbsd	Version 6.0.6
Netbsd Netbsd	Version 6.0
Netbsd Netbsd	Version 6.1.1
Netbsd Netbsd	Version 6.1.2
Netbsd Netbsd	Version 6.1.3
Netbsd Netbsd	Version 6.1.4
Netbsd Netbsd	Version 6.1.5
Netbsd Netbsd	Version 6.1

Related CWEs

Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

References (20)

http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-013.txt.asc

Source: cve@mitre.org

PatchVendor Advisory

http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-updates/2014-11/msg00029.html

Source: cve@mitre.org

http://seclists.org/oss-sec/2014/q4/459

Source: cve@mitre.org

http://seclists.org/oss-sec/2014/q4/464

Source: cve@mitre.org

http://secunia.com/advisories/62028

Source: cve@mitre.org

http://secunia.com/advisories/62260

Source: cve@mitre.org

http://support.apple.com/HT204244

Source: cve@mitre.org

https://security.gentoo.org/glsa/201611-05

Source: cve@mitre.org

https://www.exploit-db.com/exploits/43112/

Source: cve@mitre.org

http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-013.txt.asc

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-11/msg00029.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/oss-sec/2014/q4/459

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/oss-sec/2014/q4/464

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/62028

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/62260

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.apple.com/HT204244

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201611-05

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/43112/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.