CVE-2017-17534

Publication date

2017-12-14 16:00:00

Family

mitre

State

PUBLISHED

Description

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521.