9.8

CVE-2016-4303

Exploit
The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
EsIperf3 Version >= 3.0 < 3.0.12
EsIperf3 Version >= 3.1 < 3.1.3
OpensuseLeap Version42.1
OpensuseOpensuse Version13.2
DebianDebian Linux Version8.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.96% 0.933
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

http://blog.talosintel.com/2016/06/esnet-vulnerability.html
Third Party Advisory
Exploit
http://lists.opensuse.org/opensuse-updates/2016-08/msg00082.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-updates/2016-08/msg00090.html
Third Party Advisory
Mailing List
http://software.es.net/iperf/news.html#security-issue-iperf-3-1-3-iperf-3-0-12-released
Third Party Advisory
Release Notes
http://www.talosintelligence.com/reports/TALOS-2016-0164/
Third Party Advisory
Exploit
https://github.com/esnet/iperf/commit/91f2fa59e8ed80dfbf400add0164ee0e508e412a
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/01/msg00023.html
Third Party Advisory
Mailing List
https://raw.githubusercontent.com/esnet/security/master/cve-2016-4303/esnet-secadv-2016-0001.txt.asc
Third Party Advisory