CVE-2018-19974

Опубликовано: 17 дек. 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c. This can allow attackers to discover addresses in the real stack (not the YARA virtual stack).

Ссылки

https://bnbdr.github.io/posts/extracheese/
Exploit
Third Party Advisory
https://github.com/VirusTotal/yara/issues/999
Exploit
Issue Tracking
Third Party Advisory
https://github.com/bnbdr/swisscheese/
Exploit
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFFXDAMP6GJ337LIOTVF5I4T6QGMN3ZR/
https://bnbdr.github.io/posts/extracheese/
Exploit
Third Party Advisory
https://github.com/VirusTotal/yara/issues/999
Exploit
Issue Tracking
Third Party Advisory
https://github.com/bnbdr/swisscheese/
Exploit
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DFFXDAMP6GJ337LIOTVF5I4T6QGMN3ZR/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:virustotal:yara:3.8.1:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.00253

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-908

Связанные уязвимости

CVE-2018-19974

CVSS3: 5.5

ubuntu

около 7 лет назад

CVE-2018-19974

CVSS3: 5.5

debian

около 7 лет назад

In YARA 3.8.1, bytecode in a specially crafted compiled rule can read ...

GHSA-qgr5-73wm-7w3g

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 48%

0.00253

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-908