ID

VAR-201710-1384


CVE

CVE-2017-7137


TITLE

Apple Xcode of ld64 Vulnerability in arbitrary code execution in components

Trust: 0.8

sources: JVNDB: JVNDB-2017-009302

DESCRIPTION

An issue was discovered in certain Apple products. Xcode before 9 is affected. The issue involves the "ld64" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file. Apple Xcode is prone to multiple memory corruption vulnerabilities. Failed exploit attempts may result in a denial-of-service condition. Versions prior to Xcode 9 are vulnerable. Apple Xcode is an integrated development environment provided by Apple (Apple) to developers. It is mainly used to develop applications for Mac OS X and iOS. ld64 is one of the linker components. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2017-09-19-3 Xcode 9 Xcode 9 is now available and addresses the following: Git Available for: macOS Sierra 10.12.6 or later Impact: Checking out a maliciously crafted repository may lead to arbitrary code execution Description: An ssh:// URL scheme handling issue was addressed through improved input validation. CVE-2017-7076: riusksk (ae3aY=) of Tencent Security Platform Department CVE-2017-7134: riusksk (ae3aY=) of Tencent Security Platform Department CVE-2017-7135: riusksk (ae3aY=) of Tencent Security Platform Department CVE-2017-7136: riusksk (ae3aY=) of Tencent Security Platform Department CVE-2017-7137: riusksk (ae3aY=) of Tencent Security Platform Department subversion Available for: macOS Sierra 10.12.6 or later Impact: Checking out a maliciously crafted repository may lead to arbitrary code execution Description: An input validation issue was addressed through improved input validation. CVE-2017-9800 Installation note: Xcode 9 may be obtained from: https://developer.apple.com/xcode/downloads/ To check that the Xcode has been updated: * Select Xcode in the menu bar * Select About Xcode * The version after applying this update will be "9". Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJZwVI5AAoJEIOj74w0bLRG//MQAMZhTTHk4DQEuoWwW7U63c+R TVo7gRf4AVVQWJ+4FU4fT/I0l8IuxhTOfG14+sumHtsOIQV0evsAGeA9k4+RAgo8 N1DIJ3mZxYobd8KfP0DXt8fX4yfjYtLmTDJqMRvGZ6765UK+ctRQYCuN/+TWR0BM CyU6UqVQVhN+Z/Lgg8CnK2KTFbykMCHgZ7EYrwIhY3z9SvOiFCakXxUlZkLcziov 7Mkr/BKv6YlMVB+r/keuifLn2fOxa51Ic+k/n1Vb5wBmOEA2DH0w8NaBJeA/aPNd Cgwj750S0gjPG7Zk/IAOy17TJJzor2Ewrvb6wNQB5zzb32TScw58mOzydyLg0jBl j0D1k7d2+f31utzkT9gcvkq6490HginWdmUzwXuZV8dMz/Bwc4dJlF7u9gXBGrZe SymSagb28TxFVZHHO7nOVuydmafgB4tSJ9yQq4vASDbOso0pScPuAw6FhpPBaKb+ IiLpYJOOO2pJpSfgq0Z3U/rV7X2WBGcRJoJLYNXVQyyyCEXmMIAzEurn3nXUh75f LKMZxT1i3Q37KfSxOmx3o7bh9MeE3/FrZQsYRFunCAESAxn3s+JoF+EMXSjC0k5V t5mz1t+qaPkI1cQYXRxi/PwfcXUqNtXwdngrr3dVXqL8V+Yx9oVWQiC1OB60aP4i qcRPihCW7/qqjks6q8Ew =Bzk4 -----END PGP SIGNATURE-----

Trust: 2.07

sources: NVD: CVE-2017-7137 // JVNDB: JVNDB-2017-009302 // BID: 100894 // VULHUB: VHN-115340 // PACKETSTORM: 144271

AFFECTED PRODUCTS

vendor:applemodel:xcodescope:lteversion:8.3.3

Trust: 1.0

vendor:applemodel:xcodescope:ltversion:9 (macos sierra 10.12.6 or later )

Trust: 0.8

vendor:applemodel:xcodescope:eqversion:8.3.3

Trust: 0.6

vendor:applemodel:xcodescope:eqversion:7.3.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:6.0.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:2.4.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:8.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:8

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:7.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:7.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:7.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:7.0

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:6.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:6.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:6.0

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:5.0

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.4

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.3.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.3.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.3.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.2.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.1.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.0.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.0.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:4.0

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.2.5

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.2.4

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.2.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.2.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.2.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.1.4

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.1.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.1.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.1.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:3.0

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:2.3

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:2.2

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:2.1

Trust: 0.3

vendor:applemodel:xcodescope:eqversion:2.0

Trust: 0.3

vendor:applemodel:macosscope:eqversion:10.12.6

Trust: 0.3

vendor:applemodel:xcodescope:neversion:9

Trust: 0.3

sources: BID: 100894 // JVNDB: JVNDB-2017-009302 // CNNVD: CNNVD-201703-976 // NVD: CVE-2017-7137

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-7137
value: HIGH

Trust: 1.0

NVD: CVE-2017-7137
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201703-976
value: MEDIUM

Trust: 0.6

VULHUB: VHN-115340
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-7137
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-115340
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-7137
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-115340 // JVNDB: JVNDB-2017-009302 // CNNVD: CNNVD-201703-976 // NVD: CVE-2017-7137

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-115340 // JVNDB: JVNDB-2017-009302 // NVD: CVE-2017-7137

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201703-976

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201703-976

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-009302

PATCH

title:Apple security updatesurl:https://support.apple.com/en-us/HT201222

Trust: 0.8

title:HT208103url:https://support.apple.com/en-us/HT208103

Trust: 0.8

title:HT208103url:https://support.apple.com/ja-jp/HT208103

Trust: 0.8

sources: JVNDB: JVNDB-2017-009302

EXTERNAL IDS

db:NVDid:CVE-2017-7137

Trust: 2.9

db:BIDid:100894

Trust: 1.4

db:SECTRACKid:1039386

Trust: 1.1

db:JVNid:JVNVU99806334

Trust: 0.8

db:JVNDBid:JVNDB-2017-009302

Trust: 0.8

db:CNNVDid:CNNVD-201703-976

Trust: 0.7

db:VULHUBid:VHN-115340

Trust: 0.1

db:PACKETSTORMid:144271

Trust: 0.1

sources: VULHUB: VHN-115340 // BID: 100894 // JVNDB: JVNDB-2017-009302 // PACKETSTORM: 144271 // CNNVD: CNNVD-201703-976 // NVD: CVE-2017-7137

REFERENCES

url:https://support.apple.com/ht208103

Trust: 1.7

url:http://www.securityfocus.com/bid/100894

Trust: 1.1

url:http://www.securitytracker.com/id/1039386

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-7137

Trust: 0.9

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7137

Trust: 0.8

url:http://jvn.jp/vu/jvnvu99806334/index.html

Trust: 0.8

url:http://www.apple.com/macosx/

Trust: 0.3

url:https://developer.apple.com/xcode/

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2017-7134

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-9800

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-1000117

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-7136

Trust: 0.1

url:https://www.apple.com/support/security/pgp/

Trust: 0.1

url:https://gpgtools.org

Trust: 0.1

url:https://developer.apple.com/xcode/downloads/

Trust: 0.1

url:https://support.apple.com/kb/ht1222

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-7135

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2017-7076

Trust: 0.1

sources: VULHUB: VHN-115340 // BID: 100894 // JVNDB: JVNDB-2017-009302 // PACKETSTORM: 144271 // CNNVD: CNNVD-201703-976 // NVD: CVE-2017-7137

CREDITS

riusksk of Tencent Security Platform Department

Trust: 0.3

sources: BID: 100894

SOURCES

db:VULHUBid:VHN-115340
db:BIDid:100894
db:JVNDBid:JVNDB-2017-009302
db:PACKETSTORMid:144271
db:CNNVDid:CNNVD-201703-976
db:NVDid:CVE-2017-7137

LAST UPDATE DATE

2024-08-14T12:38:50.305000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-115340date:2017-10-27T00:00:00
db:BIDid:100894date:2017-09-19T00:00:00
db:JVNDBid:JVNDB-2017-009302date:2017-11-08T00:00:00
db:CNNVDid:CNNVD-201703-976date:2017-10-24T00:00:00
db:NVDid:CVE-2017-7137date:2017-10-27T13:49:08.530

SOURCES RELEASE DATE

db:VULHUBid:VHN-115340date:2017-10-23T00:00:00
db:BIDid:100894date:2017-09-19T00:00:00
db:JVNDBid:JVNDB-2017-009302date:2017-11-08T00:00:00
db:PACKETSTORMid:144271date:2017-09-20T20:22:22
db:CNNVDid:CNNVD-201703-976date:2017-03-23T00:00:00
db:NVDid:CVE-2017-7137date:2017-10-23T01:29:13.753