ID CVE-2017-9304
Summary libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule that is mishandled in the _yr_re_emit function.
References
Vulnerable Configurations
  • cpe:2.3:a:virustotal:yara:3.5.0
    cpe:2.3:a:virustotal:yara:3.5.0
CVSS
Base: 5.0
Impact:
Exploitability:
CWE CWE-399
CAPEC
nessus via4
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-47487B1223.NASL
    description Security fix for CVE-2017-9304, CVE-2017-9465 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-02-01
    plugin id 101503
    published 2017-07-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101503
    title Fedora 24 : yara (2017-47487b1223)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-156D12FA2F.NASL
    description Security fix for CVE-2017-9304, CVE-2017-9465 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-02-01
    plugin id 101577
    published 2017-07-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101577
    title Fedora 26 : yara (2017-156d12fa2f)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-FA52EFDF32.NASL
    description Security fix for CVE-2017-9304, CVE-2017-9465 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-02-02
    plugin id 101514
    published 2017-07-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101514
    title Fedora 25 : yara (2017-fa52efdf32)
refmap via4
confirm
Last major update 31-05-2017 - 00:29
Published 31-05-2017 - 00:29
Last modified 06-06-2017 - 16:28
Back to Top