Vulnerability Name:

CVE-2017-5042 (CCN-122990)

Assigned:2017-03-09
Published:2017-03-09
Updated:2022-04-22
Summary:Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.
CVSS v3 Severity:5.7 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)
5.0 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
6.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
5.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-311
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2017-5042

Source: CCN
Type: RHSA-2017-0499
Important: chromium-browser security update

Source: REDHAT
Type: Third Party Advisory
RHSA-2017:0499

Source: DEBIAN
Type: Third Party Advisory
DSA-3810

Source: BID
Type: Broken Link
96767

Source: CCN
Type: BID-96767
Google Chrome Prior to 57.0.2987.98 Multiple Security Vulnerabilities

Source: CONFIRM
Type: Vendor Advisory
https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html

Source: CONFIRM
Type: Issue Tracking, Patch, Vendor Advisory
https://crbug.com/671932

Source: XF
Type: UNKNOWN
google-chrome-cve20175042-code-exec(122990)

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update for Desktop

Source: GENTOO
Type: Third Party Advisory
GLSA-201704-02

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-5042

Vulnerable Configuration:Configuration 1:
  • cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 57.0.2987.75)
  • AND
  • cpe:/o:apple:macos:-:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 57.0.2987.100)
  • AND
  • cpe:/o:google:android:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20175042
    V
    		CVE-2017-5042
    2022-06-30
    oval:org.opensuse.security:def:25638
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:24998
    P
    		Security update for tcpdump (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26369
    P
    		Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:25347
    P
    		Security update for mariadb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25652
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:25125
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25497
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:24923
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25696
    P
    		Security update for sudo (Important)
    2020-12-01
    oval:org.opensuse.security:def:25206
    P
    		Security update for tigervnc (Important)
    2020-12-01
    oval:org.opensuse.security:def:25550
    P
    		Security update for squid (Important)
    2020-12-01
    oval:org.opensuse.security:def:24934
    P
    		Security update for systemd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26334
    P
    		Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:25263
    P
    		Security update for glibc (Important)
    2020-12-01
    oval:com.ubuntu.precise:def:20175042000
    V
    		CVE-2017-5042 on Ubuntu 12.04 LTS (precise) - medium.
    2017-04-24
    oval:com.ubuntu.xenial:def:201750420000000
    V
    		CVE-2017-5042 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-24
    oval:com.ubuntu.trusty:def:20175042000
    V
    		CVE-2017-5042 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-04-24
    oval:com.ubuntu.xenial:def:20175042000
    V
    		CVE-2017-5042 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-24
    BACK
    google chrome *
    apple macos -
    linux linux kernel -
    microsoft windows -
    google chrome *
    google android -
    redhat enterprise linux desktop 6.0
    redhat enterprise linux server 6.0
    redhat enterprise linux workstation 6.0
    debian debian linux 8.0
    debian debian linux 9.0
    redhat enterprise linux server supplementary 6
    redhat enterprise linux workstation supplementary 6
    redhat enterprise linux desktop supplementary 6