CVE-2014-9157 : Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have uns

Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string.

Published 2014-12-03 21:59:03

Updated 2017-09-08 01:29:32

Source MITRE

View at NVD, CVE.org

Vulnerability category: Overflow

Exploit prediction scoring system (EPSS) score for CVE-2014-9157

Probability of exploitation activity in the next 30 days: 5.22%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-9157

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2014-9157

CWE-134 Use of Externally-Controlled Format String

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-9157

http://seclists.org/oss-sec/2014/q4/784

oss-sec: CVE Request: Graphviz format string vuln
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/98949

Graphviz agerr() function format string CVE-2014-9157 Vulnerability Report
http://advisories.mageia.org/MGASA-2014-0520.html

Mageia Advisory: MGASA-2014-0520 - Updated graphviz packages fix CVE-2014-9157
http://www.securityfocus.com/bid/71283

Graphviz 'agerr()' Function Remote Format String Vulnerability
http://seclists.org/oss-sec/2014/q4/872

oss-sec: Re: Re: CVE Request: Graphviz format string vuln
Exploit
https://github.com/ellson/graphviz/commit/99eda421f7ddc27b14e4ac1d2126e5fe41719081

Fix format string vulnerability in using agerr() to report errors dur… · ellson/MOTHBALLED-graphviz@99eda42 · GitHub
Exploit
http://www.debian.org/security/2014/dsa-3098

Debian -- Security Information -- DSA-3098-1 graphviz

Products affected by CVE-2014-9157

Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Graphviz » Graphviz » Version: N/A
cpe:2.3:a:graphviz:graphviz:-:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-9157

Exploit prediction scoring system (EPSS) score for CVE-2014-9157

CVSS scores for CVE-2014-9157

CWE ids for CVE-2014-9157

References for CVE-2014-9157

Products affected by CVE-2014-9157