#VU15783 Resource exhaustion in pyopenssl - CVE-2018-1000808

Cybersecurity Help s.r.o.

Published: 2018-11-08 | Updated: 2018-11-09

Vulnerability identifier: #VU15783

Vulnerability risk: Low

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-1000808

CWE-ID: CWE-400

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
pyopenssl
Client/Desktop applications / Other client software

Vendor: Python Cryptographic Authority

Description

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to improper release of memory before removing the last reference in a Public Key Cryptography Standards (PKCS) #12 store. A remote unauthenticated attacker can send a specially crafted request that submits malicious input, exhaust memory resources and to cause the application to reload certificates from a PKCS #12 store.

Mitigation
Update to version 17.5.0.

Vulnerable software versions

pyopenssl: 0.1 - 17.4

External links
https://github.com/pyca/pyopenssl/pull/723

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE update for python-pyOpenSSL

OpenSUSE Linux update for python-cryptography

Resource exhaustion in py-openssl (Alpine package)

Red Hat update for pyOpenSSL

Multiple vulnerabilities in Python Cryptographic Authority pyopenssl