#VU39636 Integer overflow in Debian Linux - CVE-2017-6308
Vulnerability identifier: #VU39636
Vulnerability risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID:
CWE-ID:
CWE-190
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Debian Linux
Operating systems & Components /
Operating system
Vendor: Debian
Description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
An issue was discovered in tnef before 1.4.13. Several Integer Overflows, which can lead to Heap Overflows, have been identified in the functions that wrap memory allocation.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Debian Linux: 8.0
External links
https://www.debian.org/security/2017/dsa-3798
https://www.securityfocus.com/bid/96427
https://github.com/verdammelt/tnef/blob/master/ChangeLog
https://github.com/verdammelt/tnef/commit/c5044689e50039635e7700fe2472fd632ac77176
https://security.gentoo.org/glsa/201708-02
https://www.x41-dsec.de/lab/advisories/x41-2017-004-tnef/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
