Main Vulnerability Database Vulnerabilities #VU15743

Buffer over-read in nginx - CVE-2018-16845

Published: November 7, 2018

Vulnerability identifier: #VU15743

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2018-16845

CWE-ID: CWE-125

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: F5 Networks

Affected software:
nginx

Detailed vulnerability description

The vulnerability allows a remote attacker to gain access to potentially sensitive information or trigger denial of service conditions.

The vulnerability exists due to a boundary condition when processing headers of MP4 files within the ngx_http_mp4_module module. A remote attacker can create a specially crafted MP4 file, trick the victim into uploading it on the server and trigger application crash or disclosure of the worker's process memory.

Successful exploitation of the vulnerability requires that nginx is compiled with support for ngx_http_mp4_module module (not a default configuration).

How to mitigate CVE-2018-16845

Install updates from vendor's website.

Sources

http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html

Buffer over-read in nginx - CVE-2018-16845

Detailed vulnerability description

How to mitigate CVE-2018-16845

Sources

Please verify you're human