cnvd - cnvd-2020-41524

CNVD-2020-41524

Vulnerability from cnvd - Published: 2020-07-22

Title

Facebook WhatsApp缓冲区溢出漏洞（CNVD-2020-41524）

Description

Facebook WhatsApp是美国Facebook公司的一套利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息，查找使用该软件的联络人传送文字、图片等。 Facebook WhatsApp中存在缓冲区溢出漏洞，攻击者可通过将特制MP4文件发送给WhatsApp用户利用该漏洞导致拒绝服务或实现远程代码执行。

Severity

中

Patch Name

Facebook WhatsApp缓冲区溢出漏洞（CNVD-2020-41524）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.whatsapp.com/download/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-11931

Impacted products

Name
['Facebook WhatsApp Android版 <2.19.274', 'Facebook WhatsApp iOS版 <2.19.100', 'Facebook WhatsApp Enterprise Client版 <2.25.3', 'Facebook WhatsApp Business for Android版 <2.19.104', 'Facebook WhatsApp Business for iOS版 <2.19.100']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-11931",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-11931"
    }
  },
  "description": "Facebook WhatsApp\u662f\u7f8e\u56fdFacebook\u516c\u53f8\u7684\u4e00\u5957\u5229\u7528\u7f51\u7edc\u4f20\u9001\u77ed\u4fe1\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\u8be5\u5e94\u7528\u7a0b\u5e8f\u901a\u8fc7\u667a\u80fd\u624b\u673a\u4e2d\u7684\u8054\u7edc\u4eba\u4fe1\u606f\uff0c\u67e5\u627e\u4f7f\u7528\u8be5\u8f6f\u4ef6\u7684\u8054\u7edc\u4eba\u4f20\u9001\u6587\u5b57\u3001\u56fe\u7247\u7b49\u3002\n\nFacebook WhatsApp\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5c06\u7279\u5236MP4\u6587\u4ef6\u53d1\u9001\u7ed9WhatsApp\u7528\u6237\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6216\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.whatsapp.com/download/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-41524",
  "openTime": "2020-07-22",
  "patchDescription": "Facebook WhatsApp\u662f\u7f8e\u56fdFacebook\u516c\u53f8\u7684\u4e00\u5957\u5229\u7528\u7f51\u7edc\u4f20\u9001\u77ed\u4fe1\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\u8be5\u5e94\u7528\u7a0b\u5e8f\u901a\u8fc7\u667a\u80fd\u624b\u673a\u4e2d\u7684\u8054\u7edc\u4eba\u4fe1\u606f\uff0c\u67e5\u627e\u4f7f\u7528\u8be5\u8f6f\u4ef6\u7684\u8054\u7edc\u4eba\u4f20\u9001\u6587\u5b57\u3001\u56fe\u7247\u7b49\u3002\r\n\r\nFacebook WhatsApp\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5c06\u7279\u5236MP4\u6587\u4ef6\u53d1\u9001\u7ed9WhatsApp\u7528\u6237\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6216\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Facebook WhatsApp\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2020-41524\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Facebook WhatsApp Android\u7248 \u003c2.19.274",
      "Facebook WhatsApp iOS\u7248 \u003c2.19.100",
      "Facebook WhatsApp Enterprise Client\u7248 \u003c2.25.3",
      "Facebook WhatsApp Business for Android\u7248 \u003c2.19.104",
      "Facebook WhatsApp Business for iOS\u7248 \u003c2.19.100"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-11931",
  "serverity": "\u4e2d",
  "submitTime": "2019-11-15",
  "title": "Facebook WhatsApp\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2020-41524\uff09"
}

CVE-2019-11931 (GCVE-0-2019-11931)

Vulnerability from cvelistv5 – Published: 2019-11-14 22:55 – Updated: 2024-08-04 23:10

Summary

A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.

Severity ?

No CVSS data available.

CWE

CWE-121 - Stack-based Buffer Overflow (CWE-121)

Assigner

facebook

References

URL

Tags

https://www.facebook.com/security/advisories/cve-…

x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Facebook

WhatsApp for Android

Affected: 2.19.274
Affected: unspecified , < 2.19.274 (custom)

Facebook	WhatsApp for iOS	Affected: 2.19.100 Affected: unspecified , < 2.19.100 (custom)
Facebook	WhatsApp for Windows Phone	Affected: unspecified , ≤ 2.18.368 (custom)
Facebook	WhatsApp Enterprise Client	Affected: 2.25.3 Affected: unspecified , < 2.25.3 (custom)
Facebook	WhatsApp Business for Android	Affected: 2.19.104 Affected: unspecified , < 2.19.104 (custom)
Facebook	WhatsApp Business for iOS	Affected: 2.19.100 Affected: unspecified , < 2.19.100 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T23:10:29.691Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "WhatsApp for Android",
          "vendor": "Facebook",
          "versions": [
            {
              "status": "affected",
              "version": "2.19.274"
            },
            {
              "lessThan": "2.19.274",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "WhatsApp for iOS",
          "vendor": "Facebook",
          "versions": [
            {
              "status": "affected",
              "version": "2.19.100"
            },
            {
              "lessThan": "2.19.100",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "WhatsApp for Windows Phone",
          "vendor": "Facebook",
          "versions": [
            {
              "lessThanOrEqual": "2.18.368",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "WhatsApp Enterprise Client",
          "vendor": "Facebook",
          "versions": [
            {
              "status": "affected",
              "version": "2.25.3"
            },
            {
              "lessThan": "2.25.3",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "WhatsApp Business for Android",
          "vendor": "Facebook",
          "versions": [
            {
              "status": "affected",
              "version": "2.19.104"
            },
            {
              "lessThan": "2.19.104",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "WhatsApp Business for iOS",
          "vendor": "Facebook",
          "versions": [
            {
              "status": "affected",
              "version": "2.19.100"
            },
            {
              "lessThan": "2.19.100",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "dateAssigned": "2019-11-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "Stack-based Buffer Overflow (CWE-121)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-11-14T22:55:52",
        "orgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
        "shortName": "facebook"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve-assign@fb.com",
          "DATE_ASSIGNED": "2019-11-14",
          "ID": "CVE-2019-11931",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "WhatsApp for Android",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "!=\u003e",
                            "version_value": "2.19.274"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "2.19.274"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WhatsApp for iOS",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "!=\u003e",
                            "version_value": "2.19.100"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "2.19.100"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WhatsApp for Windows Phone",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.18.368"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WhatsApp Enterprise Client",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "!=\u003e",
                            "version_value": "2.25.3"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "2.25.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WhatsApp Business for Android",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "!=\u003e",
                            "version_value": "2.19.104"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "2.19.104"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WhatsApp Business for iOS",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "!=\u003e",
                            "version_value": "2.19.100"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "2.19.100"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Facebook"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Stack-based Buffer Overflow (CWE-121)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.facebook.com/security/advisories/cve-2019-11931",
              "refsource": "CONFIRM",
              "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
    "assignerShortName": "facebook",
    "cveId": "CVE-2019-11931",
    "datePublished": "2019-11-14T22:55:52",
    "dateReserved": "2019-05-13T00:00:00",
    "dateUpdated": "2024-08-04T23:10:29.691Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-41524

CVE-2019-11931 (GCVE-0-2019-11931)

Tags

Sightings

Nomenclature