CVE-2017-17833 : OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory

OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.

Published 2018-04-23 18:29:01

Updated 2020-05-15 00:15:11

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowMemory CorruptionExecute codeDenial of service

Products affected by CVE-2017-17833

Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 7.0
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 7.0
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 7.0
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Aus » Version: 7.6
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Eus » Version: 7.6
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Eus » Version: 7.5
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Tus » Version: 7.6
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
Matching versions
Openslp » Openslp » Version: 1.0.2
cpe:2.3:a:openslp:openslp:1.0.2:*:*:*:*:*:*:*
Matching versions
Openslp » Openslp » Version: 1.1.0
cpe:2.3:a:openslp:openslp:1.1.0:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 14.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 16.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Matching versions
Lenovo » Thinkserver Rd650 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:thinkserver_rd650_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd650 » Version: N/A
Lenovo » Thinkserver Rd450 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:thinkserver_rd450_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd450 » Version: N/A
Lenovo » Thinkserver Td350 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:thinkserver_td350_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Td350 » Version: N/A
Lenovo » Thinkserver Rd350 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:thinkserver_rd350_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd350 » Version: N/A
Lenovo » Thinkserver Rd550 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:thinkserver_rd550_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd550 » Version: N/A
Lenovo » Xclarity Administrator
Versions before (<) 1.4.0
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
Matching versions
Lenovo » Thinkserver Rd340 Firmware
Versions before (<) 50.00
cpe:2.3:o:lenovo:thinkserver_rd340_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd340 » Version: N/A
Lenovo » Thinkserver Rd440 Firmware
Versions up to, including, (<=) 50.00
cpe:2.3:o:lenovo:thinkserver_rd440_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd440 » Version: N/A
Lenovo » Thinkserver Rd540 Firmware
Versions before (<) 50.00
cpe:2.3:o:lenovo:thinkserver_rd540_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd540 » Version: N/A
Lenovo » Thinkserver Rd640 Firmware
Versions before (<) 50.00
cpe:2.3:o:lenovo:thinkserver_rd640_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd640 » Version: N/A
Lenovo » Thinkserver Rq750 Firmware
Versions before (<) 1.40
cpe:2.3:o:lenovo:thinkserver_rq750_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rq750 » Version: N/A
Lenovo » Thinkserver Td340 Firmware
Versions before (<) 46.00
cpe:2.3:o:lenovo:thinkserver_td340_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Td340 » Version: N/A
Lenovo » Thinkserver Rd350g Firmware » Version: N/A
cpe:2.3:o:lenovo:thinkserver_rd350g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd350g » Version: N/A
Lenovo » Thinkserver Rd350x Firmware » Version: N/A
cpe:2.3:o:lenovo:thinkserver_rd350x_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd350x » Version: N/A
Lenovo » Thinkserver Rd450x Firmware » Version: N/A
cpe:2.3:o:lenovo:thinkserver_rd450x_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rd450x » Version: N/A
Lenovo » Thinksystem Hr630x Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksystem_hr630x_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksystem Hr630x » Version: N/A
Lenovo » Thinksystem Hr650x Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksystem_hr650x_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksystem Hr650x » Version: N/A
Lenovo » Thinksystem Sr630 Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksystem Sr630 » Version: N/A
Lenovo » Thinkserver Sd350 Firmware » Version: N/A
cpe:2.3:o:lenovo:thinkserver_sd350_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Sd350 » Version: N/A
Lenovo » Flex System Fc3171 8gb San Switch Firmware
Versions before (<) 9.1.13.02.00
cpe:2.3:o:lenovo:flex_system_fc3171_8gb_san_switch_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Flex System Fc3171 8gb San Switch » Version: N/A
Lenovo » Storage N3310 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:storage_n3310_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Storage N3310 » Version: N/A
Lenovo » Storage N4610 Firmware
Versions before (<) 4.53.351
cpe:2.3:o:lenovo:storage_n4610_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Storage N4610 » Version: N/A
Lenovo » Thinkserver Rs160 Firmware
Versions before (<) 2.32
cpe:2.3:o:lenovo:thinkserver_rs160_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Rs160 » Version: N/A
Lenovo » Thinkserver Ts460 Firmware
Versions before (<) 2.32
cpe:2.3:o:lenovo:thinkserver_ts460_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkserver Ts460 » Version: N/A
Lenovo » Imm2
Versions before (<) 4.70
cpe:2.3:a:lenovo:imm2:*:*:*:*:*:*:*:*
Matching versions
Lenovo » CMM
Versions before (<) 1.8.0
cpe:2.3:a:lenovo:cmm:*:*:*:*:*:*:*:*
Matching versions
Lenovo » Bm Nextscale Fan Power Controller
Versions before (<) 24p-2.15
cpe:2.3:a:lenovo:bm_nextscale_fan_power_controller:*:*:*:*:*:*:*:*
Matching versions
Lenovo » Fan Power Controller
Versions before (<) 30r-1.13
cpe:2.3:a:lenovo:fan_power_controller:*:*:*:*:*:*:*:*
Matching versions
Lenovo » Imm1
Versions before (<) 1.55
cpe:2.3:a:lenovo:imm1:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-17833

EPSS FAQ

1.18%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 77 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-17833

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
9.8	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-17833

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-17833

http://support.lenovo.com/us/en/solutions/LEN-18247

OpenSLP Heap Memory Corruption - US
Patch;Third Party Advisory
https://security.gentoo.org/glsa/202005-12

OpenSLP: Multiple vulnerabilities (GLSA 202005-12) — Gentoo security

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2018:2240

RHSA-2018:2240 - Security Advisory - Red Hat Customer Portal
Third Party Advisory
https://usn.ubuntu.com/3708-1/

USN-3708-1: OpenSLP vulnerabilities | Ubuntu security notices
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/04/msg00029.html

[SECURITY] [DLA 1364-1] openslp-dfsg security update
Issue Tracking;Mailing List;Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2308

RHSA-2018:2308 - Security Advisory - Red Hat Customer Portal
Third Party Advisory
https://sourceforge.net/p/openslp/mercurial/ci/151f07745901cbdba6e00e4889561b4083250da1/

OpenSLP / Code / Commit [151f07]
Patch;Third Party Advisory

Jump to

Vulnerability Details : CVE-2017-17833

Products affected by CVE-2017-17833

Exploit prediction scoring system (EPSS) score for CVE-2017-17833

CVSS scores for CVE-2017-17833

CWE ids for CVE-2017-17833

References for CVE-2017-17833