CVE-2017-7407Improper Restriction of Operations within the Bounds of a Memory Buffer in Curl

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds Read13 documents8 sources
Severity
2.4LOWNVD
OSV8.1
EPSS
0.3%
top 48.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Haxx Curl
Timeline
PublishedApr 3
Latest updateMay 13

Description

The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physically proximate attackers to obtain sensitive information from process memory in opportunistic circumstances by reading a workstation screen during use of a --write-out argument ending in a '%' character, which leads to a heap-based buffer over-read.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 0.9 | Impact: 1.4

Affected Packages3 packages

Debianhaxx/curl< 7.52.1-4+3
Ubuntuhaxx/curl< 7.35.0-1ubuntu2.11+1
NVDhaxx/curl7.53.1

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

4
GHSA
GHSA-wc6r-j2hr-524x: The ourWriteOut function in tool_writeout2022-05-13
OSV
curl vulnerabilities2017-10-10
OSV
CVE-2017-7407: The ourWriteOut function in tool_writeout2017-04-03
CVEList
CVE-2017-7407: The ourWriteOut function in tool_writeout2017-04-03

📋Vendor Advisories

4
Ubuntu
curl vulnerabilities2017-10-23
Ubuntu
curl vulnerabilities2017-10-10
Red Hat
curl: --write-out out of bounds read2017-04-04
Debian
CVE-2017-7407: curl - The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physicall...2017

💬Community

4
Bugzilla
CVE-2017-7407 curl: --write-out out of bounds read [fedora-all]2017-04-05
Bugzilla
CVE-2017-7407 curl: --write-out out of bounds read2017-04-05
Bugzilla
CVE-2017-7407 mingw-curl: curl: --write-out out of bounds read [epel-7]2017-04-05
Bugzilla
CVE-2017-7407 mingw-curl: curl: --write-out out of bounds read [fedora-all]2017-04-05
CVE-2017-7407 — Haxx Curl vulnerability | cvebase