Vulnerability CVE-2019-19977

Vulnerability Name:

CVE-2019-19977 (CCN-173545)

Assigned:

2019-12-23

Published:

2019-12-23

Updated:

2020-01-03

Summary:

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.9 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-125

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2019-19977

Source: XF
Type: UNKNOWN
libesmtp-cve201919977-bo(173545)

Source: CCN
Type: libesmtp GIT Repository
libesmtp

Source: MISC
Type: Exploit, Third Party Advisory
https://github.com/jbouse-debian/libesmtp/blob/ca5bd0800ef1da234315da4c59716568eb5e6402/ntlm/ntlmstruct.c#L228-L242

Source: CCN
Type: GitHub Web site
Stack_Overflow_in_libesmtp.md

Source: MISC
Type: Exploit, Patch, Third Party Advisory
https://github.com/Kirin-say/Vulnerabilities/blob/master/Stack_Overflow_in_libesmtp.md

Source: MISC
Type: Product
https://web.archive.org/web/20190528215510/http://brianstafford.info/libesmtp/

Vulnerable Configuration:

Configuration 1:

cpe:/a:libesmtp_project:libesmtp:*:*:*:*:*:*:*:* (Version <= 1.0.6)

Configuration CCN 1:

cpe:/a:libesmtp:libesmtp:1.0.6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:51950	P	Security update for kubevirt stack (Important)	2022-11-14
oval:org.opensuse.security:def:768	P	Security update for wireshark (Moderate)	2022-09-19
oval:org.opensuse.security:def:3669	P	libruby2_1-2_1-2.1.9-18.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3480	P	ecryptfs-utils-103-8.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94592	P	keylime-agent-6.3.0-150400.2.5 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:93136	P	(Important)	2022-05-16
oval:org.opensuse.security:def:93289	P	(Important)	2022-03-30
oval:org.opensuse.security:def:99735	P	(Moderate)	2022-01-20
oval:org.opensuse.security:def:42217	P	Security update for libesmtp (Important)	2021-09-21
oval:org.opensuse.security:def:99143	P	(Moderate)	2021-09-18
oval:org.opensuse.security:def:111048	P	Security update for libesmtp (Important)	2021-09-07
oval:org.opensuse.security:def:70477	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:99675	P	(Important)	2021-09-03
oval:org.opensuse.security:def:99337	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93578	P	(Important)	2021-09-03
oval:org.opensuse.security:def:9395	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:92586	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:101499	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:69727	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:101305	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:94396	P	(Important)	2021-09-03
oval:org.opensuse.security:def:10337	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93104	P	(Important)	2021-09-03
oval:org.opensuse.security:def:8649	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:91998	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:99989	P	(Important)	2021-09-03
oval:org.opensuse.security:def:64569	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:99536	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:111700	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93759	P	(Important)	2021-09-03
oval:org.opensuse.security:def:9587	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:92785	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:69926	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:99140	P	(Important)	2021-09-03
oval:org.opensuse.security:def:98948	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:73691	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93264	P	(Important)	2021-09-03
oval:org.opensuse.security:def:8837	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:92193	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:100325	P	(Important)	2021-09-03
oval:org.opensuse.security:def:64758	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:107971	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93973	P	(Important)	2021-09-03
oval:org.opensuse.security:def:9786	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:92983	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:42118	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:70289	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:99412	P	(Important)	2021-09-03
oval:org.opensuse.security:def:117485	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:73880	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:93422	P	(Important)	2021-09-03
oval:org.opensuse.security:def:9032	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:92387	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:100654	P	(Important)	2021-09-03
oval:org.opensuse.security:def:69535	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:100045	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:94185	P	(Important)	2021-09-03
oval:org.opensuse.security:def:10149	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:31677	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:60349	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:23664	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:56065	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:87457	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:125595	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:83329	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:33967	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:30122	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:58816	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:89445	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:85727	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:32179	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:23962	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:57086	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:88183	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:126763	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:83449	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:34526	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:30242	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:59532	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:55240	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:86141	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:5102	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:32993	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:26115	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:57500	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:88498	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:127160	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:84205	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:31263	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:59790	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:55945	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:86643	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:82624	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:33709	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:29417	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:58002	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:89187	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:51652	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:84662	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:43509	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:39079	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:44871	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:40441	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:45907	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:41477	P	Security update for libesmtp (Important)	2021-08-25
oval:org.opensuse.security:def:38203	P	Security update for libesmtp (Important)	2021-08-25

BACK