Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2016-5017

Published: 21/09/2016 Updated: 07/11/2023
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.1 | Impact Score: 5.9 | Exploitability Score: 2.2
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Apache

Vulnerability Summary

Buffer overflow in the C cli shell in Apache Zookeeper prior to 3.4.9 and 3.5.x prior to 3.5.3, when using the "cmd:" batch mode syntax, allows malicious users to have unspecified impact via a long command string.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache zookeeper 3.5.0

apache zookeeper

apache zookeeper 3.5.2

apache zookeeper 3.5.1

Vendor Advisories

Red Hat: CVE-2016-5017
Buffer overflow in the C cli shell in Apache Zookeeper before 349 and 35x before 353, when using the "cmd:" batch mode syntax, allows attackers to have unspecified impact via a long command string ...

References

CWE-119http://www.openwall.com/lists/oss-security/2016/09/17/3http://packetstormsecurity.com/files/138755/ZooKeeper-3.4.8-3.5.2-Buffer-Overflow.htmlhttps://zookeeper.apache.org/security.html#CVE-2016-5017http://www.securityfocus.com/bid/93044https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.htmlhttps://www.oracle.com/security-alerts/cpujul2020.htmlhttps://lists.apache.org/thread.html/053d9ce4d579b02203db18545fee5e33f35f2932885459b74d1e4272%40%3Cissues.activemq.apache.org%3Ehttps://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3%40%3Ccommits.nifi.apache.org%3Ehttps://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b%40%3Ccommits.nifi.apache.org%3Ehttps://git-wip-us.apache.org/repos/asf?p=zookeeper.git%3Ba=commitdiff%3Bh=27ecf981a15554dc8e64a28630af7a5c9e2bdf4fhttps://git-wip-us.apache.org/repos/asf?p=zookeeper.git%3Ba=commitdiff%3Bh=f09154d6648eeb4ec5e1ac8a2bacbd2f8c87c14ahttps://lists.apache.org/thread.html/r4b743f407244294f316325458ccaabfce9cd70ca3a6423dbe574035c%40%3Cnotifications.dubbo.apache.org%3Ehttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2016-5017
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook