rpm package
suse/nautilus&distro=SUSE Linux Enterprise Server 11 SP4
pkg:rpm/suse/nautilus&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-14604 | Med | 6.5 | < 2.28.4-1.16.21.3.1 | 2.28.4-1.16.21.3.1 | Sep 20, 2017 | GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file's Exec field launches a malicious "sh -c" command. In other words, Nautilus prov |
- affected < 2.28.4-1.16.21.3.1fixed 2.28.4-1.16.21.3.1
GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file's Exec field launches a malicious "sh -c" command. In other words, Nautilus prov