Vulnerability Details : CVE-2011-4357
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit (neo_cgi) module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are not properly handled when creating CGI error messages using the cgi_error API function.
Vulnerability category: Execute codeDenial of service
Products affected by CVE-2011-4357
- cpe:2.3:a:brandon_long:clearsilver:*:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.14:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.2:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.10.4:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.10.3:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.5:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.4:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.10.2:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.3:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.6:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.7:*:*:*:*:*:*:*
- cpe:2.3:a:brandon_long:clearsilver:0.6:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-4357
2.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 84 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-4357
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2011-4357
-
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-4357
-
http://osvdb.org/77419
-
http://tech.groups.yahoo.com/group/ClearSilver/message/1422
-
http://www.debian.org/security/2011/dsa-2355
Debian -- Security Information -- DSA-2355-1 clearsilver
-
http://www.openwall.com/lists/oss-security/2011/11/27/1
oss-security - CVE Request -- ClearSilver (neo_cgi) -- Format string flaw by processing CGI error messages in Python module
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/71599
ClearSilver neo_cgi module format string CVE-2011-4357 Vulnerability Report
-
http://secunia.com/advisories/47016
Sign inVendor Advisory
-
http://code.google.com/p/clearsilver/source/detail?r=919
Google Code Archive - Long-term storage for Google Code Project Hosting.
Jump to