CVE-2017-6439 - Heap-based buffer overflow in the parse_string_node function in bplist.c in libimobiledevice libplis

CVE-2017-6439

Summary

Heap-based buffer overflow in the parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (out-of-bounds write) via a crafted plist file.

References

http://www.securityfocus.com/bid/97278
https://github.com/libimobiledevice/libplist/commit/32ee5213fe64f1e10ec76c1ee861ee6f233120dd
https://github.com/libimobiledevice/libplist/issues/95
https://lists.debian.org/debian-lts-announce/2020/04/msg00002.html

Vulnerable Configurations

cpe:2.3:a:libplist_project:libplist:1.12:*:*:*:*:*:*:*
cpe:2.3:a:libplist_project:libplist:1.12:*:*:*:*:*:*:*

CVSS

Base:	1.9 (as of 04-04-2017 - 01:59)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:M/Au:N/C:N/I:N/A:P

refmap via4

bid	97278
confirm	https://github.com/libimobiledevice/libplist/commit/32ee5213fe64f1e10ec76c1ee861ee6f233120dd
misc	https://github.com/libimobiledevice/libplist/issues/95
mlist	[debian-lts-announce] 20200402 [SECURITY] [DLA 2168-1] libplist security update

Last major update

04-04-2017 - 01:59

Published

15-03-2017 - 14:59

Last modified

04-04-2017 - 01:59