#VU39591 Buffer overflow in radare2 - CVE-2017-6319

Cybersecurity Help s.r.o.

Published: 2017-03-02 | Updated: 2020-08-08

Vulnerability identifier: #VU39591

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-6319

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
radare2
Universal components / Libraries / Software for developers

Vendor: Radare

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.

Mitigation
Install update from vendor's website.

Vulnerable software versions

radare2: 1.2.1

External links
https://www.securityfocus.com/bid/96520
https://github.com/radare/radare2/commit/ad55822430a03fe075221b543efb434567e9e431
https://github.com/radare/radare2/issues/6836

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Radare radare2