Multiple vulnerabilities in Apple Swift
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2013-6396 CVE-2014-0006 |
| CWE-ID | CWE-310 CWE-200 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Swift Universal components / Libraries / Scripting languages |
| Vendor | Apple Inc. |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Cryptographic issues
EUVDB-ID: #VU42022
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2013-6396
CWE-ID:
CWE-310 - Cryptographic Issues
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
The OpenStack Python client library for Swift (python-swiftclient) 1.0 through 1.9.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
MitigationInstall update from vendor's website.
Vulnerable software versionsSwift: 1.0.0 - 1.11.0
CPE2.3- cpe:2.3:a:apple:swift:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:swift:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:swift:1.0.2:*:*:*:*:*:*:*
http://www.openwall.com/lists/oss-security/2014/02/17/7
http://bugs.launchpad.net/python-swiftclient/+bug/1199783
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Information disclosure
EUVDB-ID: #VU42116
Risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2014-0006
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsSwift: 1.4.6 - 1.11.0
CPE2.3- cpe:2.3:a:apple:swift:1.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:apple:swift:1.4.7:*:*:*:*:*:*:*
- cpe:2.3:a:apple:swift:1.4.8:*:*:*:*:*:*:*
http://rhn.redhat.com/errata/RHSA-2014-0232.html
http://www.openwall.com/lists/oss-security/2014/01/17/5
http://bugs.launchpad.net/swift/+bug/1265665
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
