CVE-2013-6393

Published Feb 6, 2014

Last updated 6 years ago

CVSS info 6.8

Overview

Description: The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted tags in a YAML document, which triggers a heap-based buffer overflow.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:pyyaml:libyaml:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64CF0E49-704A-4190-9BA8-6332F1B12430",
            "versionEndIncluding": "0.1.4"
          },
          {
            "criteria": "cpe:2.3:a:pyyaml:libyaml:0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F454F77-1AB1-44CF-8E1F-47BD71966CB8"
          },
          {
            "criteria": "cpe:2.3:a:pyyaml:libyaml:0.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F2A3FC6-ADD6-4890-A91E-7B42138CB1B4"
          },
          {
            "criteria": "cpe:2.3:a:pyyaml:libyaml:0.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7892D90-243C-4588-92D0-F49B3443B3DB"
          },
          {
            "criteria": "cpe:2.3:a:pyyaml:libyaml:0.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9759A8FD-7010-4D10-9E26-A03FDDDA187B"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F61F047-129C-41A6-8A27-FFCBB8563E91"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:openstack:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6533B15B-F748-4A5D-AB86-31D38DFAE60F"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openstack:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1802FDB8-C919-4D5E-A8AD-4C5B72525090"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4863BE36-D16A-4D75-90D9-FD76DB5B48B7"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References