Vulnerability CVE-2016-2057

Vulnerability Name:

CVE-2016-2057 (CCN-110593)

Assigned:

2016-02-14

Published:

2016-02-14

Updated:

2018-10-09

Summary:

lib/xymond_ipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions (666) for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue.

CVSS v3 Severity:

3.3 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)
2.9 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-264

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2016-2057

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/135758/Xymon-4.3.x-Buffer-Overflow-Code-Execution-Information-Disclosure.html

Source: CCN
Type: BugTraq Mailing List, Sun, 14 Feb 2016 11:33:28 +0100
Xymon: Critical security issues in all versions prior to 4.3.25

Source: DEBIAN
Type: UNKNOWN
DSA-3495

Source: BUGTRAQ
Type: UNKNOWN
20160214 Xymon: Critical security issues in all versions prior to 4.3.25

Source: XF
Type: UNKNOWN
xymon-cve20162057-sec-bypass(110593)

Source: CCN
Type: Packet Storm Security [02-15-2016]
Xymon 4.3.x Buffer Overflow / Code Execution / Information Disclosure

Source: CONFIRM
Type: Patch
https://sourceforge.net/p/xymon/code/7891/

Source: CCN
Type: Xymon Web page
Xymon 4.3.25 Released - Security update

Vulnerable Configuration:

Configuration 1:

cpe:/a:xymon:xymon:4.1.0:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.1.1:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.1.2:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.1.2:p1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.1.2:p2:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2:alfa:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2:beta20060605:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2:rc20060712:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2.0:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2.2:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2.2:rc1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2.3:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.2.3:rc1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.0:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.0:beta1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.0:beta2:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.0:beta3:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.0:rc1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.1:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.2:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.3:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.4:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.5:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.6:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.7:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.8:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.9:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.10:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.11:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.12:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.13:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.14:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.15:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.16:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.17:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.18:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.19:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.19:rc1:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.20:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.21:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.22:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.23:*:*:*:*:*:*:*

OR cpe:/a:xymon:xymon:4.3.24:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:xymon:xymon:4.3.24:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.bionic:def:201620570000000	V	CVE-2016-2057 on Ubuntu 18.04 LTS (bionic) - medium.	2016-04-13
oval:com.ubuntu.artful:def:20162057000	V	CVE-2016-2057 on Ubuntu 17.10 (artful) - medium.	2016-04-13
oval:com.ubuntu.trusty:def:20162057000	V	CVE-2016-2057 on Ubuntu 14.04 LTS (trusty) - medium.	2016-04-13
oval:com.ubuntu.xenial:def:201620570000000	V	CVE-2016-2057 on Ubuntu 16.04 LTS (xenial) - medium.	2016-04-13
oval:com.ubuntu.bionic:def:20162057000	V	CVE-2016-2057 on Ubuntu 18.04 LTS (bionic) - medium.	2016-04-13
oval:com.ubuntu.xenial:def:20162057000	V	CVE-2016-2057 on Ubuntu 16.04 LTS (xenial) - medium.	2016-04-13
oval:com.ubuntu.disco:def:201620570000000	V	CVE-2016-2057 on Ubuntu 19.04 (disco) - medium.	2016-04-13
oval:com.ubuntu.cosmic:def:20162057000	V	CVE-2016-2057 on Ubuntu 18.10 (cosmic) - medium.	2016-04-13
oval:com.ubuntu.cosmic:def:201620570000000	V	CVE-2016-2057 on Ubuntu 18.10 (cosmic) - medium.	2016-04-13
oval:com.ubuntu.precise:def:20162057000	V	CVE-2016-2057 on Ubuntu 12.04 LTS (precise) - medium.	2016-04-13

BACK