CVE-2014-2270

MEDIUM

Description

softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.

References

http://bugs.gw.com/view.php?id=313

http://lists.opensuse.org/opensuse-updates/2014-03/msg00034.html

http://lists.opensuse.org/opensuse-updates/2014-03/msg00037.html

http://lists.opensuse.org/opensuse-updates/2014-03/msg00084.html

http://rhn.redhat.com/errata/RHSA-2014-1765.html

http://seclists.org/oss-sec/2014/q1/473

http://seclists.org/oss-sec/2014/q1/504

http://seclists.org/oss-sec/2014/q1/505

http://support.apple.com/kb/HT6443

http://www.debian.org/security/2014/dsa-2873

http://www.php.net/ChangeLog-5.php

http://www.ubuntu.com/usn/USN-2162-1

http://www.ubuntu.com/usn/USN-2163-1

https://github.com/file/file/commit/447558595a3650db2886cd2f416ad0beba965801

https://security.gentoo.org/glsa/201503-08

Details

Source: MITRE

Published: 2014-03-14

Updated: 2017-07-01

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:a:christos_zoulas:file:5.00:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.01:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.02:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.03:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.04:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.05:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.06:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.07:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.08:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.09:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.10:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.11:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.12:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.13:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.14:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:5.15:*:*:*:*:*:*:*

cpe:2.3:a:christos_zoulas:file:*:*:*:*:*:*:*:* versions up to 5.16 (inclusive)

Configuration 2

cpe:2.3:a:tim_robbins:libmagic:-:*:*:*:*:*:*:*

Tenable Plugins

View all (37 total)

ID	Name	Product	Family	Severity
124927	EulerOS Virtualization 3.0.1.0 : file (EulerOS-SA-2019-1424)	Nessus	Huawei Local Security Checks	high
92905	FreeBSD : FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3) (70140f20-6007-11e6-a6c3-14dae9d210b8)	Nessus	FreeBSD Local Security Checks	medium
82333	Mandriva Linux Security Advisory : php (MDVSA-2015:080)	Nessus	Mandriva Local Security Checks	high
82128	Debian DLA-145-1 : php5 security update	Nessus	Debian Local Security Checks	medium
82007	GLSA-201503-08 : file: Denial of Service	Nessus	Gentoo Local Security Checks	medium
80737	Oracle Solaris Third-Party Patch Update : php (cve_2013_4248_input_validation)	Nessus	Solaris Local Security Checks	high
79185	CentOS 6 : file (CESA-2014:1606)	Nessus	CentOS Local Security Checks	medium
78843	Scientific Linux Security Update : file on SL6.x i386/x86_64 (20141014)	Nessus	Scientific Linux Local Security Checks	medium
78556	PHP 5.6.0 Multiple Vulnerabilities	Nessus	CGI abuses	high
78527	Oracle Linux 6 : file (ELSA-2014-1606)	Nessus	Oracle Linux Local Security Checks	medium
78414	RHEL 6 : file (RHSA-2014:1606)	Nessus	Red Hat Local Security Checks	medium
8394	Mac OS X < 10.9.5 Multiple Vulnerabilities (Security Update 2014-004)	Nessus Network Monitor	Web Clients	critical
77748	Mac OS X 10.9.x < 10.9.5 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
77455	GLSA-201408-11 : PHP: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
77047	Scientific Linux Security Update : php53 and php on SL5.x, SL6.x i386/x86_64 (20140806)	Nessus	Scientific Linux Local Security Checks	high
77043	Oracle Linux 5 / 6 : php / php53 (ELSA-2014-1012)	Nessus	Oracle Linux Local Security Checks	high
77032	CentOS 5 / 6 : php / php53 (CESA-2014:1012)	Nessus	CentOS Local Security Checks	high
77015	RHEL 5 / 6 : php53 and php (RHSA-2014:1012)	Nessus	Red Hat Local Security Checks	high
75306	openSUSE Security Update : file (openSUSE-SU-2014:0435-1)	Nessus	SuSE Local Security Checks	medium
75291	openSUSE Security Update : file (openSUSE-SU-2014:0364-1)	Nessus	SuSE Local Security Checks	medium
74279	Debian DSA-2943-1 : php5 - security update	Nessus	Debian Local Security Checks	high
74087	SuSE 11.3 Security Update : file (SAT Patch Number 9066)	Nessus	SuSE Local Security Checks	medium
73400	Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : php5 vulnerability (USN-2163-1)	Nessus	Ubuntu Local Security Checks	medium
73399	Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : file vulnerability (USN-2162-1)	Nessus	Ubuntu Local Security Checks	medium
73267	FreeBSD : file -- out-of-bounds access in search rules with offsets from input file (7e61a839-b714-11e3-8195-001966155bea)	Nessus	FreeBSD Local Security Checks	medium
73233	Amazon Linux AMI : php55 (ALAS-2014-314)	Nessus	Amazon Linux Local Security Checks	medium
73232	Amazon Linux AMI : php54 (ALAS-2014-313)	Nessus	Amazon Linux Local Security Checks	medium
73217	Fedora 19 : file-5.11-13.fc19 (2014-3589)	Nessus	Fedora Local Security Checks	medium
73051	Mandriva Linux Security Advisory : php (MDVSA-2014:059)	Nessus	Mandriva Local Security Checks	medium
73040	Fedora 19 : php-5.5.10-1.fc19 (2014-3537)	Nessus	Fedora Local Security Checks	medium
72998	Mandriva Linux Security Advisory : file (MDVSA-2014:051)	Nessus	Mandriva Local Security Checks	medium
72974	Fedora 20 : file-5.14-17.fc20 (2014-3606)	Nessus	Fedora Local Security Checks	medium
72952	Debian DSA-2873-1 : file - several vulnerabilities	Nessus	Debian Local Security Checks	medium
72892	Fedora 20 : php-5.5.10-1.fc20 (2014-3534)	Nessus	Fedora Local Security Checks	medium
8154	PHP 5.5.x < 5.5.10 Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	high
72882	PHP 5.5.x < 5.5.10 Multiple Vulnerabilities	Nessus	CGI abuses	medium
72881	PHP 5.4.x < 5.4.26 Multiple Vulnerabilities	Nessus	CGI abuses	medium