#VU8702 Out-of-bounds read in libcurl


Published: 2017-10-05 | Updated: 2018-03-20

Vulnerability identifier: #VU8702

Vulnerability risk: Low

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-1000254

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libcurl
Universal components / Libraries / Libraries used by multiple products

Vendor: curl.haxx.se

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to out-of-bounds read when parsing a directory name when connecting to an FTP server. A remote attacker can trigger memory corruption, access arbitrary files and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

Mitigation
The vulnerability is fixed in version 7.56.0.

Vulnerable software versions

libcurl: 7.7 - 7.55.1

External links
http://curl.haxx.se/docs/adv_20171004.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell EMC Unisphere Central
Gentoo update for cURL
Multiple vulnerabilities in Apple macOS/OS X
Amazon Linux AMI update for curl
Debian update for curl
Debian update for curl
Slackware Linux update for curl
Arch Linux update for curl
Arch Linux update for lib32-curl
Arch Linux update for lib32-libcurl-gnutls