In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any escape sequence in the terminal. This could potentially result in code execution, arbitrary file writes, or other attacks.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-11-20T15:00:00
Updated: 2022-06-20T18:06:31
Reserved: 2017-11-05T00:00:00
Link: CVE-2017-16544
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-11-20T15:29:00.387
Modified: 2022-10-28T19:29:45.977
Link: CVE-2017-16544
JSON object: View
Redhat Information
No data.
CWE