CVE-2010-2246
published 2011-05-26CVE-2010-2246: feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.
PriorityP347medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
6.62%
93.0th percentile
feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.
Affected
28 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | feh | < feh 1.8-1 (bookworm) | feh 1.8-1 (bookworm) |
| feh_project | feh | <= 1.7 | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | — | — |
| feh_project | feh | >= 0 < 1.8-1 | 1.8-1 |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
vendor_debian5.1LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2010-2246: feh - feh before 1.8, when the --wget-timestamp option is enabled, might allow remote ...
vendor_debian·2010·CVSS 5.1
CVE-2010-2246 [MEDIUM] CVE-2010-2246: feh - feh before 1.8, when the --wget-timestamp option is enabled, might allow remote ...
feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.
Scope: local
bookworm: resolved (fixed in 1.8-1)
bullseye: resolved (fixed in 1.8-1)
forky: resolved (fixed in 1.8-1)
sid: resolved (fixed in 1.8-1)
trixie: resolved (fixed in 1.8-1)
GHSA
GHSA-rp7q-j6w2-c4q5: feh before 1
ghsa_unreviewed·2022-05-13
CVE-2010-2246 [MEDIUM] CWE-20 GHSA-rp7q-j6w2-c4q5: feh before 1
feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.
OSV
CVE-2010-2246: feh before 1
osv·2011-05-26·CVSS 5.1
CVE-2010-2246 [MEDIUM] CVE-2010-2246: feh before 1
feh before 1.8, when the --wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.
No detection rules found.
Bugzilla
CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set
bugzilla·2010-06-28·CVSS 5.1
CVE-2010-2246 [MEDIUM] CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set
CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set
An improper input sanitization flaw was found in the way feh,
the versatile and fast image viewer using imlib2, escaped URLs
to remote image files, to be reloaded. If a remote attacker could
trick the local user into opening a specially-crafted URL (where
that URL led to a valid file), it could lead to arbitrary code
execution with the privileges of the user running feh.
References:
[1] http://bugs.gentoo.org/show_bug.cgi?id=325531
[2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587205
[3] http://linuxbrit.co.uk/software/feh/
[4] https://derf.homelinux.org/projects/feh/changelog
Upstream patch:
[5] https://derf.homelinux.org/git/feh/patch/?id=ae56ce24b10767800b1715e7e68b41c7d3571b4c
CVE Request:
[6]
Bugzilla
CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set [fedora-all]
bugzilla·2010-06-28·CVSS 5.1
CVE-2010-2246 [MEDIUM] CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set [fedora-all]
CVE-2010-2246 Feh: Arbitrary code execution by viewing http images with reload set [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
Forr more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=608808
Please note: this
http://derf.homelinux.org/git/feh/plain/ChangeLoghttp://openwall.com/lists/oss-security/2010/06/25/4http://openwall.com/lists/oss-security/2010/06/28/4http://www.securityfocus.com/bid/41161http://derf.homelinux.org/git/feh/plain/ChangeLoghttp://openwall.com/lists/oss-security/2010/06/25/4http://openwall.com/lists/oss-security/2010/06/28/4http://www.securityfocus.com/bid/41161
2011-05-26
Published