Vulnerability CVE-2015-5695

Vulnerability Name:

CVE-2015-5695 (CCN-105199)

Assigned:

2015-07-28

Published:

2015-07-28

Updated:

2017-09-12

Summary:

Designate 2015.1.0 through 1.0.0.0b1 as packaged in OpenStack Kilo does not enforce RecordSets per domain, and Records per RecordSet quotas when processing an internal zone file transfer, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted resource record set.

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-400

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2015-5695

Source: MLIST
Type: Patch, Vendor Advisory
[Openstack] 20150728 [Security][LP# 1471161] Designate mDNS DoS through incorrect handling of large RecordSets

Source: CCN
Type: oss-security Mailing List, Tue, 28 Jul 2015 20:13:13 +0100
Re: CVE Request - OpenStack Designate mDNS DoS through incorrect handling of large RecordSets

Source: CCN
Type: oss-security Mailing List, Tue, 28 Jul 2015 17:09:18 -0400 (EDT)
Re: CVE Request - OpenStack Designate mDNS DoS through incorrect handling of large RecordSets

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20150728 Re: CVE Request - OpenStack Designate mDNS DoS through incorrect handling of large RecordSets

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20150729 Re: Re: CVE Request - OpenStack Designate mDNS DoS through incorrect handling of large RecordSets

Source: CONFIRM
Type: Exploit, Issue Tracking, Third Party Advisory
https://bugs.launchpad.net/designate/+bug/1471161

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1245241

Source: XF
Type: UNKNOWN
openstack-designate-cve20155695-sec-bypass(105199)

Source: CONFIRM
Type: Mailing List, Patch, Third Party Advisory
https://launchpadlibrarian.net/211525251/bug-1471161-quotas-master.patch

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-5695

Vulnerable Configuration:

Configuration 1:

cpe:/a:openstack:designate:1.0.0.0b1:*:*:*:*:*:*:*

OR cpe:/a:openstack:designate:1.0.0a0:*:*:*:*:*:*:*

OR cpe:/a:openstack:designate:2015.1.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:openstack:designate:1.0.0.0:b1:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.xenial:def:20155695000	V	CVE-2015-5695 on Ubuntu 16.04 LTS (xenial) - medium.	2017-08-31
oval:com.ubuntu.xenial:def:201556950000000	V	CVE-2015-5695 on Ubuntu 16.04 LTS (xenial) - medium.	2017-08-31

BACK