[SRCTREE-4481] Shell Injection in SourceTree for Mac

Type: Bug
Resolution: Fixed
Priority: Highest
Fix Version/s: 2.3.1, 2.3.2
Affects Version/s: 1.9.8, 2.2.4
Component/s: General
Labels:

Symptom Severity:
Severity 2 - Major

SourceTree for Mac had a shell injection vulnerability starting with 1.9.8 prior to 2.3.1 (the fixed version). By visiting a malicious website or by convincing a user to click a sourcetree:// URL with a vulnerable version of SourceTree for Mac installed an attacker could use a shell injection vulnerability to execute arbitrary commands on a victims machine.

Affected versions:

All versions of SourceTree for Mac from 1.9.8 before 2.3.1 (the fixed version) are affected by this vulnerability.

Fix:

SourceTree for Mac version 2.3.2 is available for download from https://www.sourcetreeapp.com/?v=mac.

Acknowledgements:

We would like to credit Matthew Diaz of NCC Group Security Advisory for reporting this issue to us.

David Black added a comment - 17/Jan/2017 4:46 AM

CVSS v3 score: 9.6 => Critical severity

Exploitability Metrics

Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	Required

Scope Metric

Scope	Changed

Impact Metrics

Confidentiality	High
Integrity	High
Availability	High

David Black added a comment - 17/Jan/2017 4:46 AM CVSS v3 score: 9.6 => Critical severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required None User Interaction Required Scope Metric Scope Changed Impact Metrics Confidentiality High Integrity High Availability High

Assignee:: Unassigned

Reporter:: David Black

Affected customers:: 0 This affects my team

Watchers:: 1 Start watching this issue

Created:: 17/Jan/2017 4:45 AM

Updated:: 14/Jan/2019 8:25 PM

Resolved:: 17/Jan/2017 4:47 AM

Sourcetree For Mac

Details

Description

Fix:

Attachments

Forms

Activity

Collapse comment: David Black added a comment - 17/Jan/2017 4:46 AM

Expand comment: David Black added a comment - 17/Jan/2017 4:46 AM

People

Dates