#VU23825 Untrusted pointer dereference in UPX - CVE-2019-20053

Cybersecurity Help s.r.o.

Published: 2019-12-28 | Updated: 2020-01-29

Vulnerability identifier: #VU23825

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-20053

CWE-ID: CWE-822

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
UPX
Universal components / Libraries / Libraries used by multiple products

Vendor: UPX

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to invalid memory address dereference within the canUnpack() function in p_mach.cpp. A remote attacker can pass a specially crafted Mach-O file to the application and perform a denial of service attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

UPX: 3.95

External links
https://github.com/upx/upx/issues/314

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Untrusted pointer dereference in upx (Alpine package)

OpenSUSE Linux update for upx

Multiple vulnerabilities in UPX