#VU10359 Command injection in Leptonica - CVE-2018-3836
Vulnerability identifier: #VU10359
Vulnerability risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-77
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Leptonica
Universal components / Libraries /
Libraries used by multiple products
Vendor: DanBloomberg
Description
The vulnerability allows a remote attacker to inject arbitrary commands.
The weakness exists in the gplotMakeOutput function due to insufficient validation of user-supplied input. A local attacker can submit a specially crafted gplot rootname argument, inject arbitrary commands and execute arbitrary code with system or root privileges.
Successful exploitation of the vulnerabiiity may result in system compromise.
Mitigation
Update to version 1.75.1.
Vulnerable software versions
Leptonica: 1.74.4
External links
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0516
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
