Vulnerability CVE-2016-4333

Vulnerability Name:

CVE-2016-4333 (CCN-119031)

Assigned:

2016-11-17

Published:

2016-11-17

Updated:

2017-11-04

Summary:

The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's terminator. Due to this, an aggressor can cause the loop's index to point outside the bounds of the array when initializing it.

CVSS v3 Severity:

8.6 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)
7.6 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

6.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
5.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2016-4333

Source: DEBIAN
Type: UNKNOWN
DSA-3727

Source: BID
Type: UNKNOWN
94416

Source: CCN
Type: BID-94416
HDF5 CVE-2016-4333 Local Heap Buffer Overflow Vulnerability

Source: CCN
Type: Talos Vulnerability Report TALOS-2016-0179
HDF5 Group libhdf5 H5T_COMPOUND Code Execution Vulnerability

Source: MISC
Type: Exploit, Technical Description, Third Party Advisory
http://www.talosintelligence.com/reports/TALOS-2016-0179/

Source: XF
Type: UNKNOWN
hdf5-cve20164333-bo(119031)

Source: GENTOO
Type: UNKNOWN
GLSA-201701-13

Source: CCN
Type: HDF5 Group Web site
OBTAINING THE LATEST HDF5 SOFTWARE

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-4333

Vulnerable Configuration:

Configuration 1:

cpe:/a:hdfgroup:hdf5:1.8.16:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20164333	V	CVE-2016-4333	2021-10-24
oval:org.opensuse.security:def:26386	P	Security update for kdepim, messagelib (Moderate)	2020-12-01
oval:org.opensuse.security:def:25315	P	Security update for ovmf (Moderate)	2020-12-01
oval:org.opensuse.security:def:25690	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:25050	P	Security update for nfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:26421	P	Security update for hdf5 (Important)	2020-12-01
oval:org.opensuse.security:def:25399	P	Security update for libproxy (Important)	2020-12-01
oval:org.opensuse.security:def:25704	P	Security update for ppp (Important)	2020-12-01
oval:org.opensuse.security:def:25177	P	Security update for mariadb-connector-c (Important)	2020-12-01
oval:org.opensuse.security:def:25549	P	Security update for tigervnc (Important)	2020-12-01
oval:org.opensuse.security:def:24975	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25748	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25258	P	Security update for postgresql10 (Low)	2020-12-01
oval:org.opensuse.security:def:25602	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:24986	P	Security update for cronie (Low)	2020-12-01
oval:org.cisecurity:def:1588	P	DSA-3727-1 -- hdf5 -- security update	2017-01-13
oval:com.ubuntu.bionic:def:201643330000000	V	CVE-2016-4333 on Ubuntu 18.04 LTS (bionic) - low.	2016-11-18
oval:com.ubuntu.artful:def:20164333000	V	CVE-2016-4333 on Ubuntu 17.10 (artful) - low.	2016-11-18
oval:com.ubuntu.xenial:def:20164333000	V	CVE-2016-4333 on Ubuntu 16.04 LTS (xenial) - low.	2016-11-18
oval:com.ubuntu.xenial:def:201643330000000	V	CVE-2016-4333 on Ubuntu 16.04 LTS (xenial) - low.	2016-11-18
oval:com.ubuntu.bionic:def:20164333000	V	CVE-2016-4333 on Ubuntu 18.04 LTS (bionic) - low.	2016-11-18
oval:com.ubuntu.precise:def:20164333000	V	CVE-2016-4333 on Ubuntu 12.04 LTS (precise) - low.	2016-11-18
oval:com.ubuntu.trusty:def:20164333000	V	CVE-2016-4333 on Ubuntu 14.04 LTS (trusty) - low.	2016-11-18

BACK