Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
605
VMScore

CVE-2017-10686

Published: 29/06/2017 Updated: 28/03/2019
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that could cause multiple damages. For example, it causes a corrupted double-linked list in detoken(), a double free or corruption in delete_Token(), and an out-of-bounds write in detoken(). It has a high possibility to lead to a remote code execution attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

nasm netwide assembler 2.14

canonical ubuntu linux 14.04

Vendor Advisories

Ubuntu Security Notice: nasm vulnerabilities
NASM could be made to crash or run programs if it opened a specially crafted file ...
Debian CVElist Bug Report Logs: CVE-2017-11111 CVE-2017-10686
Debian Bug report logs - #867988 CVE-2017-11111 CVE-2017-10686 Package: nasm; Maintainer for nasm is Anibal Monsalve Salazar <anibal@debianorg>; Source for nasm is src:nasm (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Mon, 10 Jul 2017 21:24:02 UTC Severity: grave Tags: security, upst ...
Debian CVElist Bug Report Logs: nasm: CVE-2017-14228: illegal address access in function paste_tokens()
Debian Bug report logs - #874731 nasm: CVE-2017-14228: illegal address access in function paste_tokens() Package: src:nasm; Maintainer for src:nasm is Anibal Monsalve Salazar <anibal@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 9 Sep 2017 12:03:02 UTC Severity: important Tags: securi ...
Red Hat: CVE-2017-10686
In Netwide Assembler (NASM) 214rc0, there are multiple heap use after free vulnerabilities in the tool nasm The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that could cause multiple damages For example, it causes a corrupted double-l ...

References

CWE-416https://bugzilla.nasm.us/show_bug.cgi?id=3392414https://usn.ubuntu.com/3694-1/https://security.gentoo.org/glsa/201903-19https://usn.ubuntu.com/3694-1/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook