CVE-2018-1000006

Published: Jan 24, 2018Modified: Nov 21, 2024

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

GitHub Electron versions 1.8.2-beta.3 and earlier, 1.7.10 and earlier, 1.6.15 and earlier has a vulnerability in the protocol handler, specifically Electron apps running on Windows 10, 7 or 2008 that register custom protocol handlers can be tricked in arbitrary command execution if the user clicks on a specially crafted URL. This has been fixed in versions 1.8.2-beta.4, 1.7.11, and 1.6.16.

Affected (5)

Products: Atom: Electron

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Atom Electron	Version 1.8.2 beta1
Atom Electron	Version 1.8.2 beta2
Atom Electron	Version 1.8.2 beta3

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Atom Electron	Up to 1.7.10

Configuration C

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Atom Electron	Up to 1.6.15

Running on/with	Platform Versions
Microsoft Windows 10	All versions
Microsoft Windows 7	All versions
Microsoft Windows Server 2008	All versions

Related CWEs

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (12)

http://www.securityfocus.com/bid/102796

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://electronjs.org/blog/protocol-handler-fix

Source: cve@mitre.org

MitigationThird Party Advisory

https://github.com/electron/electron/releases/tag/v1.8.2-beta.4

Source: cve@mitre.org

PatchThird Party Advisory

https://medium.com/%40Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374

Source: cve@mitre.org

https://www.exploit-db.com/exploits/43899/

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/44357/

Source: cve@mitre.org

http://www.securityfocus.com/bid/102796

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://electronjs.org/blog/protocol-handler-fix

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationThird Party Advisory

https://github.com/electron/electron/releases/tag/v1.8.2-beta.4

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://medium.com/%40Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/43899/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/44357/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.