VDB-99228 · CVE-2016-10209 · BID 97327

libarchive 3.2.2 archive_string.c archive_wstring_append_from_mbs null pointer dereference

A vulnerability, which was classified as problematic, was found in libarchive 3.2.2. Affected is the function archive_wstring_append_from_mbs of the file archive_string.c. The manipulation leads to null pointer dereference. Using CWE to declare the problem leads to CWE-476. The bug was discovered 12/13/2016. The weakness was presented 04/03/2017 as FEDORA-2017-55a8f10223 (GitHub Repository). The advisory is shared for download at github.com. This vulnerability is traded as CVE-2016-10209. Attacking locally is a requirement. Technical details are available. There is no exploit available. The current price for an exploit might be approx. USD $0-$5k at the moment. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 111 days. As 0-day the estimated underground price was around $0-$5k. The vulnerability scanner Nessus provides a plugin with the ID 99609 (Fedora 25 : libarchive (2017-55a8f10223)), which helps to determine the existence of the flaw in a target environment. The commercial vulnerability scanner Qualys is able to test this issue with plugin 171705 (SUSE Enterprise Linux Security Update for libarchive (SUSE-SU-2018:3640-1)). It is recommended to upgrade the affected component. A possible mitigation has been published 3 weeks after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 97327) and Tenable (99609).

Field11/24/2022 04:05 PM11/24/2022 04:13 PM11/24/2022 04:20 PM
typeFile Compression SoftwareFile Compression SoftwareFile Compression Software
namelibarchivelibarchivelibarchive
version3.2.23.2.23.2.2
filearchive_string.carchive_string.carchive_string.c
functionarchive_wstring_append_from_mbsarchive_wstring_append_from_mbsarchive_wstring_append_from_mbs
cwe476 (null pointer dereference)476 (null pointer dereference)476 (null pointer dereference)
risk111
cvss2_vuldb_basescore4.34.34.3
cvss2_vuldb_tempscore3.43.43.4
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciNNN
cvss2_vuldb_iiNNN
cvss2_vuldb_aiPPP
cvss2_nvd_avNNN
cvss2_nvd_acMMM
cvss2_nvd_auNNN
cvss2_nvd_ciNNN
cvss2_nvd_iiNNN
cvss2_nvd_aiPPP
cvss3_meta_basescore4.44.44.4
cvss3_meta_tempscore4.24.24.2
cvss3_vuldb_basescore3.33.33.3
cvss3_vuldb_tempscore2.92.92.9
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prNNN
cvss3_vuldb_uiRRR
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iNNN
cvss3_vuldb_aLLL
cvss3_nvd_avLLL
cvss3_nvd_acLLL
cvss3_nvd_prNNN
cvss3_nvd_uiRRR
cvss3_nvd_sUUU
cvss3_nvd_cNNN
cvss3_nvd_iNNN
cvss3_nvd_aHHH
date1491177600 (04/03/2017)1491177600 (04/03/2017)1491177600 (04/03/2017)
locationGitHub RepositoryGitHub RepositoryGitHub Repository
urlhttps://github.com/libarchive/libarchive/issues/842https://github.com/libarchive/libarchive/issues/842https://github.com/libarchive/libarchive/issues/842
price_0day$0-$5k$0-$5k$0-$5k
cveCVE-2016-10209CVE-2016-10209CVE-2016-10209
cve_assigned1486425600 (02/07/2017)1486425600 (02/07/2017)1486425600 (02/07/2017)
cve_nvd_published149117760014911776001491177600
cve_nvd_summaryThe archive_wstring_append_from_mbs function in archive_string.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive file.The archive_wstring_append_from_mbs function in archive_string.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive file.The archive_wstring_append_from_mbs function in archive_string.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive file.
securityfocus973279732797327
securityfocus_titlelibarchive CVE-2016-10209 Denial Of Service Vulnerabilitylibarchive CVE-2016-10209 Denial Of Service Vulnerabilitylibarchive CVE-2016-10209 Denial Of Service Vulnerability
nessus_id996099960999609
nessus_nameFedora 25 : libarchive (2017-55a8f10223)Fedora 25 : libarchive (2017-55a8f10223)Fedora 25 : libarchive (2017-55a8f10223)
nessus_filenamefedora_2017-55a8f10223.naslfedora_2017-55a8f10223.naslfedora_2017-55a8f10223.nasl
nessus_riskMediumMediumMedium
nessus_familyFedora Local Security ChecksFedora Local Security ChecksFedora Local Security Checks
nessus_typelocallocallocal
nessus_date1492992000 (04/24/2017)1492992000 (04/24/2017)1492992000 (04/24/2017)
openvas_id867773867773867773
openvas_filenamegb_fedora_2017_55a8f10223_libarchive_fc25.naslgb_fedora_2017_55a8f10223_libarchive_fc25.naslgb_fedora_2017_55a8f10223_libarchive_fc25.nasl
openvas_titleFedora Update for libarchive FEDORA-2017-55a8f10223Fedora Update for libarchive FEDORA-2017-55a8f10223Fedora Update for libarchive FEDORA-2017-55a8f10223
openvas_familyFedora Local Security ChecksFedora Local Security ChecksFedora Local Security Checks
qualys_id171705171705171705
qualys_titleSUSE Enterprise Linux Security Update for libarchive (SUSE-SU-2018:3640-1)SUSE Enterprise Linux Security Update for libarchive (SUSE-SU-2018:3640-1)SUSE Enterprise Linux Security Update for libarchive (SUSE-SU-2018:3640-1)
seealso100756 100757 106164 106749 106750 106751100756 100757 106164 106749 106750 106751100756 100757 106164 106749 106750 106751
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcUCUCUC
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcUUU
reaction_days191919
0day_days111111111
exposure_days191919
cvss3_nvd_basescore5.55.55.5
discoverydate148158720014815872001481587200
confirm_urlhttps://github.com/libarchive/libarchive/issues/842https://github.com/libarchive/libarchive/issues/842https://github.com/libarchive/libarchive/issues/842
nameUpgradeUpgradeUpgrade
date1492819200 (04/22/2017)1492819200 (04/22/2017)1492819200 (04/22/2017)
oval_idoval:org.cisecurity:def:5877oval:org.cisecurity:def:5877oval:org.cisecurity:def:5877
osvdb_titleCVE-2016-10209 - libarchive - Denial of Service IssueCVE-2016-10209 - libarchive - Denial of Service IssueCVE-2016-10209 - libarchive - Denial of Service Issue
securityfocus_date1491264000 (04/04/2017)1491264000 (04/04/2017)1491264000 (04/04/2017)
securityfocus_classDesign ErrorDesign ErrorDesign Error
identifierUSN-3736-1842FEDORA-2017-55a8f10223
cvss2_nvd_basescore4.34.34.3

Do you need the next level of professionalism?

Upgrade your account now!