| Vulnerability Name: | CVE-2016-9953 (CCN-140503) | ||||||||||||||||||||
| Assigned: | 2016-11-29 | ||||||||||||||||||||
| Published: | 2016-11-29 | ||||||||||||||||||||
| Updated: | 2018-04-10 | ||||||||||||||||||||
| Summary: | The verify_certificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built for Windows CE using the schannel TLS backend, allows remote attackers to obtain sensitive information, cause a denial of service (crash), or possibly have unspecified other impact via a wildcard certificate name, which triggers an out-of-bounds read. | ||||||||||||||||||||
| CVSS v3 Severity: | 9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) 8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C)
| ||||||||||||||||||||
| CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-125 | ||||||||||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2016-9953 Source: CONFIRM Type: Vendor Advisory https://curl.haxx.se/CVE-2016-9952.patch Source: CCN Type: Project curl Security Advisory Win CE schannel cert name out of buffer read Source: CONFIRM Type: Vendor Advisory https://curl.haxx.se/docs/adv_20161221C.html Source: XF Type: UNKNOWN libcurl-cve20169953-info-disc(140503) | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||