Vulnerability Details : CVE-2017-10686
In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that could cause multiple damages. For example, it causes a corrupted double-linked list in detoken(), a double free or corruption in delete_Token(), and an out-of-bounds write in detoken(). It has a high possibility to lead to a remote code execution attack.
Vulnerability category: Memory CorruptionExecute code
Products affected by CVE-2017-10686
- cpe:2.3:a:nasm:netwide_assembler:2.14:rc0:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-10686
1.48%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 87 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-10686
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2017-10686
-
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-10686
-
https://bugzilla.nasm.us/show_bug.cgi?id=3392414
3392414 – Multiple use after free vulnerabilities in the Nasm tool with latest vesionExploit;Issue Tracking;Patch;Third Party Advisory;VDB Entry
-
https://security.gentoo.org/glsa/201903-19
NASM: Multiple vulnerabilities (GLSA 201903-19) — Gentoo security
-
https://usn.ubuntu.com/3694-1/
USN-3694-1: NASM vulnerabilities | Ubuntu security noticesThird Party Advisory
Jump to