#VU37440 Input validation error in PyBitmessage - CVE-2018-1000070

Cybersecurity Help s.r.o.

Published: 2018-03-13 | Updated: 2020-08-08

Vulnerability identifier: #VU37440

Vulnerability risk: High

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2018-1000070

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PyBitmessage
Client/Desktop applications / Messaging software

Vendor: Bitmessage

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Bitmessage PyBitmessage version v0.6.2 (and introduced in or after commit 8ce72d8d2d25973b7064b1cf76a6b0b3d62f0ba0) contains a Eval injection vulnerability in main program, file src/messagetypes/__init__.py function constructObject that can result in Code Execution. This attack appears to be exploitable via remote attacker using a malformed message which must be processed by the victim - e.g. arrive from any sender on bitmessage network. This vulnerability appears to have been fixed in v0.6.3.

Mitigation
Install update from vendor's website.

Vulnerable software versions

PyBitmessage: 0.6.2

External links
https://github.com/Bitmessage/PyBitmessage/commit/3a8016d31f517775d226aa8b902480f4a3a148a9#comments

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Input validation error in Bitmessage PyBitmessage