Vulnerability-Lookup

CNVD-2017-02594

Vulnerability from cnvd - Published: 2017-03-10

Title

Iceni Argus整数溢出漏洞

Description

Iceni Argus是英国Iceni公司的一套PDF文档类型转换工具。 Iceni Argus处理特殊的PDF文件存在整数溢出漏洞，攻击者可利用漏洞构建恶意PDF文件，诱使用户解析，可使应用程序崩溃。

Severity

高

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法: http://www.talosintelligence.com/reports/TALOS-2016-0214/

Reference

http://www.talosintelligence.com/reports/TALOS-2016-0214/ http://www.securityfocus.com/bid/96469

Impacted products

Name
Iceni Technology Argus 6.6.04

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "96469"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-8389",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8389"
    }
  },
  "description": "Iceni Argus\u662f\u82f1\u56fdIceni\u516c\u53f8\u7684\u4e00\u5957PDF\u6587\u6863\u7c7b\u578b\u8f6c\u6362\u5de5\u5177\u3002\r\n\r\nIceni Argus\u5904\u7406\u7279\u6b8a\u7684PDF\u6587\u4ef6\u5b58\u5728\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u6784\u5efa\u6076\u610fPDF\u6587\u4ef6\uff0c\u8bf1\u4f7f\u7528\u6237\u89e3\u6790\uff0c\u53ef\u4f7f\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\u3002",
  "discovererName": "Marcin \u00e2??Icewall\u00e2?? Noga of Cisco Talos.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5:\r\nhttp://www.talosintelligence.com/reports/TALOS-2016-0214/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-02594",
  "openTime": "2017-03-10",
  "products": {
    "product": "Iceni Technology Argus 6.6.04"
  },
  "referenceLink": "http://www.talosintelligence.com/reports/TALOS-2016-0214/\r\nhttp://www.securityfocus.com/bid/96469",
  "serverity": "\u9ad8",
  "submitTime": "2017-03-01",
  "title": "Iceni Argus\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2016-8389 (GCVE-0-2016-8389)

Vulnerability from cvelistv5 – Published: 2017-02-28 15:00 – Updated: 2024-08-06 02:20

Summary

An exploitable integer-overflow vulnerability exists within Iceni Argus. When it attempts to convert a malformed PDF to XML, it will attempt to convert each character from a font into a polygon and then attempt to rasterize these shapes. As the application attempts to iterate through the rows and initializing the polygon shape in the buffer, it will write outside of the bounds of said buffer. This can lead to code execution under the context of the account running it.

Severity ?

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

Integer Overflow

Assigner

talos

References

URL

Tags

	http://www.securityfocus.com/bid/96469	vdb-entryx_refsource_BID
	http://www.talosintelligence.com/reports/TALOS-20…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	Iceni	Argus	Affected: 6.6.04 (Sep 7 2012) NK

Date Public ?

2017-02-27 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:20:31.264Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "96469",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/96469"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.talosintelligence.com/reports/TALOS-2016-0214/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Argus",
          "vendor": "Iceni",
          "versions": [
            {
              "status": "affected",
              "version": "6.6.04 (Sep 7 2012) NK"
            }
          ]
        }
      ],
      "datePublic": "2017-02-27T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An exploitable integer-overflow vulnerability exists within Iceni Argus. When it attempts to convert a malformed PDF to XML, it will attempt to convert each character from a font into a polygon and then attempt to rasterize these shapes. As the application attempts to iterate through the rows and initializing the polygon shape in the buffer, it will write outside of the bounds of said buffer. This can lead to code execution under the context of the account running it."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Integer Overflow",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-19T19:16:34.000Z",
        "orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
        "shortName": "talos"
      },
      "references": [
        {
          "name": "96469",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/96469"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.talosintelligence.com/reports/TALOS-2016-0214/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "talos-cna@cisco.com",
          "ID": "CVE-2016-8389",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Argus",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.6.04 (Sep 7 2012) NK"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Iceni"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An exploitable integer-overflow vulnerability exists within Iceni Argus. When it attempts to convert a malformed PDF to XML, it will attempt to convert each character from a font into a polygon and then attempt to rasterize these shapes. As the application attempts to iterate through the rows and initializing the polygon shape in the buffer, it will write outside of the bounds of said buffer. This can lead to code execution under the context of the account running it."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": 8.8,
            "baseSeverity": "High",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Integer Overflow"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "96469",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/96469"
            },
            {
              "name": "http://www.talosintelligence.com/reports/TALOS-2016-0214/",
              "refsource": "MISC",
              "url": "http://www.talosintelligence.com/reports/TALOS-2016-0214/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
    "assignerShortName": "talos",
    "cveId": "CVE-2016-8389",
    "datePublished": "2017-02-28T15:00:00.000Z",
    "dateReserved": "2016-09-29T00:00:00.000Z",
    "dateUpdated": "2024-08-06T02:20:31.264Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-02594

CVE-2016-8389 (GCVE-0-2016-8389)

Tags

Sightings

Nomenclature