In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any escape sequence in the terminal. This could potentially result in code execution, arbitrary file writes, or other attacks.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-11-20T15:00:00

Updated: 2024-08-05T20:27:04.005Z

Reserved: 2017-11-05T00:00:00

Link: CVE-2017-16544

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-11-20T15:29:00.387

Modified: 2024-11-21T03:16:33.000

Link: CVE-2017-16544

cve-icon Redhat

Severity : Moderate

Publid Date: 2017-11-08T00:00:00Z

Links: CVE-2017-16544 - Bugzilla