Details of VAR-201704-0787

ID

VAR-201704-0787

CVE

CVE-2017-2431

TITLE

Apple macOS of CoreMedia Vulnerability in arbitrary code execution in components

Trust: 0.8

sources: JVNDB: JVNDB-2017-002397

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "CoreMedia" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .mov file. Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, or bypass security restrictions and perform unauthorized actions. This may aid in further attacks. CoreMedia is one of the framework components used to connect media pipelines

Trust: 1.98

sources: NVD: CVE-2017-2431 // JVNDB: JVNDB-2017-002397 // BID: 97140 // VULHUB: VHN-110634

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.12.3	Trust: 1.4
vendor:	apple	model:	mac os x	scope:	lte	version:	10.12.3	Trust: 1.0
vendor:	webkit	model:	open source project webkit	scope:	eq	version:	0	Trust: 0.3
vendor:	ubuntu	model:	linux	scope:	eq	version:	16.10	Trust: 0.3
vendor:	ubuntu	model:	linux lts	scope:	eq	version:	16.04	Trust: 0.3
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	macos	scope:	eq	version:	10.12.3	Trust: 0.3
vendor:	apple	model:	security update yosemite	scope:	ne	version:	2017-0010	Trust: 0.3
vendor:	apple	model:	security update el capitan	scope:	ne	version:	2017-0010	Trust: 0.3
vendor:	apple	model:	macos	scope:	ne	version:	10.12.4	Trust: 0.3

sources: BID: 97140 // JVNDB: JVNDB-2017-002397 // CNNVD: CNNVD-201704-072 // NVD: CVE-2017-2431

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-2431
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-2431
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201704-072
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-110634
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-2431
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-110634
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-2431
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-110634 // JVNDB: JVNDB-2017-002397 // CNNVD: CNNVD-201704-072 // NVD: CVE-2017-2431

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-110634 // JVNDB: JVNDB-2017-002397 // NVD: CVE-2017-2431

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-072

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201704-072

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-002397

PATCH

title:	Apple security updates	url:	https://support.apple.com/en-us/HT201222	Trust: 0.8
title:	HT207615	url:	https://support.apple.com/en-us/HT207615	Trust: 0.8
title:	HT207615	url:	https://support.apple.com/ja-jp/HT207615	Trust: 0.8
title:	Apple macOS Sierra CoreMedia Buffer error vulnerability fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68965	Trust: 0.6

sources: JVNDB: JVNDB-2017-002397 // CNNVD: CNNVD-201704-072

EXTERNAL IDS

db:	NVD	id:	CVE-2017-2431	Trust: 2.8
db:	BID	id:	97140	Trust: 2.0
db:	SECTRACK	id:	1038138	Trust: 1.1
db:	JVN	id:	JVNVU90482935	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-002397	Trust: 0.8
db:	CNNVD	id:	CNNVD-201704-072	Trust: 0.7
db:	VULHUB	id:	VHN-110634	Trust: 0.1

sources: VULHUB: VHN-110634 // BID: 97140 // JVNDB: JVNDB-2017-002397 // CNNVD: CNNVD-201704-072 // NVD: CVE-2017-2431

REFERENCES

url:	http://www.securityfocus.com/bid/97140	Trust: 1.7
url:	https://support.apple.com/ht207615	Trust: 1.7
url:	http://www.securitytracker.com/id/1038138	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2431	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu90482935/index.html	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-2431	Trust: 0.8
url:	https://www.apple.com/	Trust: 0.3
url:	http://www.apple.com/macosx/	Trust: 0.3

sources: VULHUB: VHN-110634 // BID: 97140 // JVNDB: JVNDB-2017-002397 // CNNVD: CNNVD-201704-072 // NVD: CVE-2017-2431

CREDITS

Ulf Frisk, Apple, Brandon Azad, an anonymous researcher, Max Bazaliy, beist, Sergey Bylokhov, Simon Huang, pjf, Alex Fishman, Izik Eidus, Pekka Oikarainen, Matias Karhumaa, Marko Laakso, @cocoahuke, kimyok, Craig Arendt, Axis, sss, Orr A, Benjamin Gnahm, I

Trust: 0.3

sources: BID: 97140

SOURCES

db:	VULHUB	id:	VHN-110634
db:	BID	id:	97140
db:	JVNDB	id:	JVNDB-2017-002397
db:	CNNVD	id:	CNNVD-201704-072
db:	NVD	id:	CVE-2017-2431

LAST UPDATE DATE

2024-11-23T20:41:43.095000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-110634	date:	2017-07-12T00:00:00
db:	BID	id:	97140	date:	2017-06-08T08:02:00
db:	JVNDB	id:	JVNDB-2017-002397	date:	2017-04-12T00:00:00
db:	CNNVD	id:	CNNVD-201704-072	date:	2017-04-07T00:00:00
db:	NVD	id:	CVE-2017-2431	date:	2024-11-21T03:23:30.737

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-110634	date:	2017-04-02T00:00:00
db:	BID	id:	97140	date:	2017-03-27T00:00:00
db:	JVNDB	id:	JVNDB-2017-002397	date:	2017-04-12T00:00:00
db:	CNNVD	id:	CNNVD-201704-072	date:	2017-04-07T00:00:00
db:	NVD	id:	CVE-2017-2431	date:	2017-04-02T01:59:01.917