CVE-2017-11423 - OpenCVE

The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Libmspack Project	Libmspack
Clamav	Clamav

Configuration 1 [-]

AND

cpe:2.3:a:libmspack_project:libmspack:0.5:alpha:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.99.2:*:*:*:*:*:*:*

References

Link	Resource
http://www.debian.org/security/2017/dsa-3946
https://bugzilla.clamav.net/show_bug.cgi?id=11873	Permissions Required
https://github.com/hackerlib/hackerlib-vul/tree/master/clamav-vul	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/02/msg00014.html
https://security.gentoo.org/glsa/201804-16

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-07-18T20:00:00

Updated: 2018-10-21T09:57:02

Reserved: 2017-07-18T00:00:00

Link: CVE-2017-11423

JSON object: View

NVD Information

Status : Modified

Published: 2017-07-18T20:29:00.263

Modified: 2019-10-03T00:03:26.223

Link: CVE-2017-11423

JSON object: View

Redhat Information

No data.

CWE

CWE-125

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-07-18T00:00:00", "descriptions": [{"lang": "en", "value": "The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-21T09:57:02", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[debian-lts-announce] 20180212 [SECURITY] [DLA 1279-1] clamav security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2018/02/msg00014.html"}, {"name": "DSA-3946", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2017/dsa-3946"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/hackerlib/hackerlib-vul/tree/master/clamav-vul"}, {"name": "GLSA-201804-16", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201804-16"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.clamav.net/show_bug.cgi?id=11873"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-11423", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[debian-lts-announce] 20180212 [SECURITY] [DLA 1279-1] clamav security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/02/msg00014.html"}, {"name": "DSA-3946", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2017/dsa-3946"}, {"name": "https://github.com/hackerlib/hackerlib-vul/tree/master/clamav-vul", "refsource": "MISC", "url": "https://github.com/hackerlib/hackerlib-vul/tree/master/clamav-vul"}, {"name": "GLSA-201804-16", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201804-16"}, {"name": "https://bugzilla.clamav.net/show_bug.cgi?id=11873", "refsource": "MISC", "url": "https://bugzilla.clamav.net/show_bug.cgi?id=11873"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-11423", "datePublished": "2017-07-18T20:00:00", "dateReserved": "2017-07-18T00:00:00", "dateUpdated": "2018-10-21T09:57:02", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:libmspack_project:libmspack:0.5:alpha:*:*:*:*:*:*", "matchCriteriaId": "986DA387-2AD7-4B4B-9153-FAAC30954623", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:clamav:clamav:0.99.2:*:*:*:*:*:*:*", "matchCriteriaId": "5643323C-F44D-4F04-A710-D25EA28D301F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file."}, {"lang": "es", "value": "La funci\u00f3n cabd_read_string en el archivo mspack/cabd.c en libmspack versi\u00f3n 0.5alpha, tal como se usa en ClamAV versi\u00f3n 0.99.2 y otros productos, permite a los atacantes remotos causar una denegaci\u00f3n de servicio (exceso lectura del b\u00fafer en la regi\u00f3n stack de la memoria y bloqueo de aplicaci\u00f3n) por medio de un archivo CAB creado."}], "id": "CVE-2017-11423", "lastModified": "2019-10-03T00:03:26.223", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-07-18T20:29:00.263", "references": [{"source": "cve@mitre.org", "url": "http://www.debian.org/security/2017/dsa-3946"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "https://bugzilla.clamav.net/show_bug.cgi?id=11873"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/hackerlib/hackerlib-vul/tree/master/clamav-vul"}, {"source": "cve@mitre.org", "url": "https://lists.debian.org/debian-lts-announce/2018/02/msg00014.html"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201804-16"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}]}