CVE-2017-14496

Published Oct 3, 2017

Last updated a year ago

CVSS high 7.5

Overview

Description: Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-191

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "588D4F37-0A56-47A4-B710-4D5F3D214FB9"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B21E9A8-CE63-42C2-A11A-94D977A96DF1"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          },
          {
            "criteria": "cpe:2.3:o:google:android:4.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3CEEA22-63B4-4702-A400-01349DF0EC1E"
          },
          {
            "criteria": "cpe:2.3:o:google:android:5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9915371-C730-41F7-B86E-7E4DE0DF5385"
          },
          {
            "criteria": "cpe:2.3:o:google:android:5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1D94CDD-DE7B-444E-A3AE-AE9C9A779374"
          },
          {
            "criteria": "cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E70C6D8D-C9C3-4D92-8DFC-71F59E068295"
          },
          {
            "criteria": "cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "691FA41B-C2CE-413F-ABB1-0B22CB322807"
          },
          {
            "criteria": "cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09E6085C-A61E-4A89-BF80-EDD9A7DF1E47"
          },
          {
            "criteria": "cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D835D592-2423-44C6-804A-3AD010112E7C"
          },
          {
            "criteria": "cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "568E2561-A068-46A2-B331-BBA91FC96F0C"
          },
          {
            "criteria": "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B578E383-0D77-4AC7-9C81-3F0B8C18E033"
          },
          {
            "criteria": "cpe:2.3:o:novell:leap:42.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A64AAD2D-38ED-4BA2-A27A-A2716F28D43A"
          },
          {
            "criteria": "cpe:2.3:o:novell:leap:42.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76221AE4-1A3C-48EC-AFC2-1819BE4D3DC5"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B85D7A28-8CBA-4D77-AD30-DB3CA49F2F98",
            "versionEndIncluding": "2.77"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References