Ruby 2.4.0 Onigmo regparse.c parse_char_class Regular Expression input validation

A vulnerability was found in Ruby 2.4.0. It has been classified as problematic. This affects the function parse_char_class of the file regparse.c of the component Onigmo. The manipulation as part of Regular Expression leads to improper input validation. The CWE definition for the vulnerability is CWE-20. The bug was discovered 02/20/2017. The weakness was shared 04/03/2017 as 13234 (Website). The advisory is shared at bugs.ruby-lang.org. This vulnerability is uniquely identified as CVE-2017-6181. It is possible to initiate the attack remotely. Technical details are available. There is no exploit available. The price for an exploit might be around USD $0-$5k at the moment. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 42 days. We expect the 0-day to have been worth approximately $0-$5k. The vulnerability scanner Nessus provides a plugin with the ID 111873 (Photon OS 1.0: Libxml2 / Ncurses / Openldap / Ruby PHSA-2017-0024 (deprecated)), which helps to determine the existence of the flaw in a target environment. A possible mitigation has been published 4 months after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 97304) and Tenable (111873).

Field04/03/2017 04:59 PM08/25/2020 12:46 PM11/24/2022 06:28 PM
typeProgramming Language SoftwareProgramming Language SoftwareProgramming Language Software
nameRubyRubyRuby
version2.4.02.4.02.4.0
componentOnigmoOnigmoOnigmo
fileregparse.cregparse.cregparse.c
functionparse_char_classparse_char_classparse_char_class
input_typeRegular ExpressionRegular ExpressionRegular Expression
cwe20 (input validation)20 (input validation)20 (input validation)
risk111
cvss2_vuldb_basescore4.34.34.3
cvss2_vuldb_tempscore4.34.34.3
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciNNN
cvss2_vuldb_iiNNN
cvss2_vuldb_aiPPP
cvss2_nvd_avNNN
cvss2_nvd_acLLL
cvss2_nvd_auNNN
cvss2_nvd_ciNNN
cvss2_nvd_iiNNN
cvss2_nvd_aiPPP
cvss3_meta_basescore6.46.46.4
cvss3_meta_tempscore6.46.46.4
cvss3_vuldb_basescore5.35.35.3
cvss3_vuldb_tempscore5.35.35.3
cvss3_vuldb_avNNN
cvss3_vuldb_acLLL
cvss3_vuldb_prNNN
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iNNN
cvss3_vuldb_aLLL
cvss3_nvd_avNNN
cvss3_nvd_acLLL
cvss3_nvd_prNNN
cvss3_nvd_uiNNN
cvss3_nvd_sUUU
cvss3_nvd_cNNN
cvss3_nvd_iNNN
cvss3_nvd_aHHH
date1491177600 (04/03/2017)1491177600 (04/03/2017)1491177600 (04/03/2017)
urlhttps://bugs.ruby-lang.org/issues/13234https://bugs.ruby-lang.org/issues/13234https://bugs.ruby-lang.org/issues/13234
price_0day$0-$5k$0-$5k$0-$5k
cveCVE-2017-6181CVE-2017-6181CVE-2017-6181
cve_assigned1487635200 (02/21/2017)1487635200 (02/21/2017)1487635200 (02/21/2017)
cve_nvd_published149117760014911776001491177600
cve_nvd_summaryThe parse_char_class function in regparse.c in the Onigmo (aka Oniguruma-mod) regular expression library, as used in Ruby 2.4.0, allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted regular expression.The parse_char_class function in regparse.c in the Onigmo (aka Oniguruma-mod) regular expression library, as used in Ruby 2.4.0, allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted regular expression.The parse_char_class function in regparse.c in the Onigmo (aka Oniguruma-mod) regular expression library, as used in Ruby 2.4.0, allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted regular expression.
securityfocus973049730497304
securityfocus_titleRuby CVE-2017-6181 Denial of Service VulnerabilityRuby CVE-2017-6181 Denial of Service VulnerabilityRuby CVE-2017-6181 Denial of Service Vulnerability
nessus_id111873111873111873
nessus_namePhoton OS 1.0: Libxml2 / Ncurses / Openldap / Ruby PHSA-2017-0024 (deprecated)Photon OS 1.0: Libxml2 / Ncurses / Openldap / Ruby PHSA-2017-0024 (deprecated)Photon OS 1.0: Libxml2 / Ncurses / Openldap / Ruby PHSA-2017-0024 (deprecated)
nessus_filenamePhotonOS_PHSA-2017-0024.naslPhotonOS_PHSA-2017-0024.naslPhotonOS_PHSA-2017-0024.nasl
nessus_riskHighHighHigh
nessus_familyPhotonOS Local Security ChecksPhotonOS Local Security ChecksPhotonOS Local Security Checks
nessus_typelocallocallocal
nessus_date1534464000 (08/17/2018)1534464000 (08/17/2018)1534464000 (08/17/2018)
locationWebsiteWebsiteWebsite
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlNDNDND
cvss2_vuldb_rcNDNDND
cvss3_vuldb_eXXX
cvss3_vuldb_rlXXX
cvss3_vuldb_rcXXX
reaction_days101101101
0day_days424242
exposure_days101101101
cvss3_nvd_basescore7.57.57.5
discoverydate14875488001487548800
confirm_urlhttps://bugs.ruby-lang.org/issues/13234https://bugs.ruby-lang.org/issues/13234
date1499904000 (07/13/2017)1499904000 (07/13/2017)
osvdb_titleCVE-2017-6181 - Onigmo - Denial of Service IssueCVE-2017-6181 - Onigmo - Denial of Service Issue
securityfocus_date1491177600 (04/03/2017)1491177600 (04/03/2017)
securityfocus_classInput Validation ErrorInput Validation Error
identifier13234
cvss2_nvd_basescore5.0

Want to stay up to date on a daily basis?

Enable the mail alert feature now!