curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal function that returns a good 32bit random value. Having a weak or virtually non-existent random value makes the operations that use it vulnerable.

The remote host is running a version of Mac OS X version 10.x prior to 10.12.6, and is affected by multiple vulnerabilities :

 - An overflow condition exists in the curl component in the 'dprintf_formatf()' function that is triggered when handling floating point conversion. An unauthenticated, remote attacker can exploit this to cause a denial of service condition or the execution of arbitrary code. (CVE-2016-9586)
 - A flaw exits in the curl component in the 'randit()' function within file lib/rand.c due to improper initialization of the 32-bit random value, which is used, for example, to generate Digest and NTLM authentication nonces, resulting in weaker cryptographic operations than expected. (CVE-2016-9594)
 - A flaw exists in the curl component in the 'allocate_conn()' function in lib/url.c when using the OCSP stapling feature for checking a X.509 certificate revocation status. The issue is triggered as the request option for OCSP stapling is not properly passed to the TLS library, resulting in no error being returned even when no proof of the validity of the certificate could be provided. A man-in-the-middle attacker can exploit this to provide a revoked certificate. (CVE-2017-2629)
 - A remote code execution vulnerability exists in the CoreAudio component due to improper validation of user-supplied input when handling movie files. An unauthenticated, remote attacker can exploit this, by convincing a user to play a specially crafted movie file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2017-7008)
 - A memory corruption issue exists in the IOUSBFamily component due to improper validation of user-supplied input. A local attacker can exploit this, via a specially crafted application, to cause a denial of service condition or the execution of arbitrary code. (CVE-2017-7009)
 - Multiple out-of-bounds read errors exist in the libxml2 component due to improper handling of specially crafted XML documents. An unauthenticated, remote attacker can exploit these to disclose user information. (CVE-2017-7010, CVE-2017-7013)
 - Multiple memory corruption issues exist in the Intel Graphics Driver component due to improper validation of input. A local attacker can exploit these issues to execute arbitrary code with elevated privileges. (CVE-2017-7014, CVE-2017-7017, CVE-2017-7035, CVE-2017-7044)
 - A remote code execution vulnerability exists in the Audio component due to improper validation of user-supplied input when handling audio files. An unauthenticated, remote attacker can exploit this, by convincing a user to play a specially crafted audio file, to execute arbitrary code. (CVE-2017-7015)
 - Multiple remote code execution vulnerabilities exist in the afclip component due to improper validation of user-supplied input when handling audio files. An unauthenticated, remote attacker can exploit these vulnerabilities, by convincing a user to play a specially crafted audio file, to execute arbitrary code. (CVE-2017-7016, CVE-2017-7033)
 - A memory corruption issue exists in the AppleGraphicsPowerManagement component due to improper validation of input. A local attacker can exploit this to cause a denial of service condition or the execution of arbitrary code with system privileges. (CVE-2017-7021)
 - Multiple memory corruption issues exist in the kernel due to improper validation of input. A local attacker can exploit these issues to cause a denial of service condition or the execution of arbitrary code with system privileges. (CVE-2017-7022, CVE-2017-7024, CVE-2017-7026)
 - Multiple memory corruption issues exist in the kernel due to improper validation of input. A local attacker can exploit these issues to cause a denial of service condition or the execution of arbitrary code with kernel privileges. (CVE-2017-7023, CVE-2017-7025, CVE-2017-7027, CVE-2017-7069)
 - Multiple unspecified flaws exist in the kernel due to a failure to properly sanitize input. A local attacker can exploit these issues, via a specially crafted application, to disclose restricted memory contents. (CVE-2017-7028, CVE-2017-7029, CVE-2017-7067)
 - A flaw exists in the Foundation component due to improper validation of input. A unauthenticated, remote attacker can exploit this, by convincing a user to open specially crafted file, to execute arbitrary code. (CVE-2017-7031)
 - A memory corruption issue exists in the 'kext tools' component due to improper validation of input. A local attacker can exploit this to execute arbitrary code with elevated privileges. (CVE-2017-7032)
 - Multiple unspecified flaws exist in the Intel Graphics Driver component due to a failure to properly sanitize input. A local attacker can exploit these issues, via a specially crafted application, to disclose restricted memory contents. (CVE-2017-7036, CVE-2017-7045)
 - A memory corruption issue exists in the libxpc component due to improper validation of input. A local attacker can exploit this issue, via a specifically crafted application, to cause a denial of service condition or the execution of arbitrary code with system privileges. (CVE-2017-7047)
 - Multiple memory corruption issues exist in the Bluetooth component due to improper validation of input. A local attacker can exploit these issues to execute arbitrary code with system privileges. (CVE-2017-7050, CVE-2017-7051)
 - A memory corruption issue exists in the Bluetooth component due to improper validation of input. A local attacker can exploit these issues to execute arbitrary code with system privileges. (CVE-2017-7054)
 - A buffer overflow condition exists in the Contacts component due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to cause a denial of service condition or the execution of arbitrary code. (CVE-2017-7062)
 - A buffer overflow condition exists in the libarchive component due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, via a specially crafted archive file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2017-7068)
 - A certificate validation bypass vulnerability exists in the curl component due to the program attempting to resume TLS sessions even if the client certificate fails. An unauthenticated, remote attacker can exploit this to bypass validation mechanisms. (CVE-2017-7468)
 - A memory corruption issue exists in the Broadcom BCM43xx family Wi-Fi Chips component that allows an unauthenticated, remote attacker to execute arbitrary code. (CVE-2017-9417)


The remote host is running Mac OS X 10.10.5, Mac OS X 10.11.6, or macOS 10.12.5 and is missing a security update. It is therefore, affected by multiple vulnerabilities :

  - An overflow condition exists in the curl component in     the dprintf_formatf() function that is triggered when     handling floating point conversion. An unauthenticated,     remote attacker can exploit this to cause a denial of     service condition or the execution of arbitrary code.
    (CVE-2016-9586)

  - A flaw exits in the curl component in the randit()     function within file lib/rand.c due to improper     initialization of the 32-bit random value, which is     used, for example, to generate Digest and NTLM     authentication nonces, resulting in weaker cryptographic     operations than expected. (CVE-2016-9594)

  - A flaw exists in the curl component in the     allocate_conn() function in lib/url.c when using the     OCSP stapling feature for checking a X.509 certificate     revocation status. The issue is triggered as the request     option for OCSP stapling is not properly passed to the     TLS library, resulting in no error being returned even     when no proof of the validity of the certificate could     be provided. A man-in-the-middle attacker can exploit     this to provide a revoked certificate. (CVE-2017-2629)

  - A remote code execution vulnerability exists in the     CoreAudio component due to improper validation of     user-supplied input when handling movie files. An     unauthenticated, remote attacker can exploit this, by     convincing a user to play a specially crafted movie     file, to cause a denial of service condition or the     execution of arbitrary code. (CVE-2017-7008)

  - A memory corruption issue exists in the IOUSBFamily     component due to improper validation of user-supplied     input. A local attacker can exploit this, via a     specially crafted application, to cause a denial of     service condition or the execution of arbitrary code.
    (CVE-2017-7009)

  - Multiple out-of-bounds read errors exist in the libxml2     component due to improper handling of specially crafted     XML documents. An unauthenticated, remote attacker can     exploit these to disclose user information.
    (CVE-2017-7010, CVE-2017-7013)

  - Multiple memory corruption issues exist in the Intel     Graphics Driver component due to improper validation of     input. A local attacker can exploit these issues to     execute arbitrary code with elevated privileges.
    (CVE-2017-7014, CVE-2017-7017, CVE-2017-7035,     CVE-2017-7044)

  - A remote code execution vulnerability exists in the     Audio component due to improper validation of     user-supplied input when handling audio files. An     unauthenticated, remote attacker can exploit this, by     convincing a user to play a specially crafted audio     file, to execute arbitrary code. (CVE-2017-7015)

  - Multiple remote code execution vulnerabilities exist in     the afclip component due to improper validation of     user-supplied input when handling audio files. An     unauthenticated, remote attacker can exploit these     vulnerabilities, by convincing a user to play a     specially crafted audio file, to execute arbitrary     code. (CVE-2017-7016, CVE-2017-7033)

  - A memory corruption issue exists in the     AppleGraphicsPowerManagement component due to improper     validation of input. A local attacker can exploit this     to cause a denial of service condition or the execution     of arbitrary code with system privileges.
    (CVE-2017-7021)

  - Multiple memory corruption issues exist in the kernel     due to improper validation of input. A local attacker     can exploit these issues to cause a denial of service     condition or the execution of arbitrary code with system     privileges. (CVE-2017-7022, CVE-2017-7024,     CVE-2017-7026)

  - Multiple memory corruption issues exist in the kernel     due to improper validation of input. A local attacker     can exploit these issues to cause a denial of service     condition or the execution of arbitrary code with kernel     privileges. (CVE-2017-7023, CVE-2017-7025,     CVE-2017-7027, CVE-2017-7069)

  - Multiple unspecified flaws exist in the kernel due to a     failure to properly sanitize input. A local attacker can     exploit these issues, via a specially crafted     application, to disclose restricted memory contents.
    (CVE-2017-7028, CVE-2017-7029, CVE-2017-7067)

  - A flaw exists in the Foundation component due to     improper validation of input. A unauthenticated, remote     attacker can exploit this, by convincing a user to open     specially crafted file, to execute arbitrary code.
    (CVE-2017-7031)

  - A memory corruption issue exists in the 'kext tools'     component due to improper validation of input. A local     attacker can exploit this to execute arbitrary code with     elevated privileges. (CVE-2017-7032)

  - Multiple unspecified flaws exist in the Intel Graphics     Driver component due to a failure to properly sanitize     input. A local attacker can exploit these issues, via a     specially crafted application, to disclose restricted     memory contents. (CVE-2017-7036, CVE-2017-7045)

  - A memory corruption issue exists in the libxpc component     due to improper validation of input. A local attacker     can exploit this issue, via a specifically crafted     application, to cause a denial of service condition or     the execution of arbitrary code with system privileges.
    (CVE-2017-7047)

  - Multiple memory corruption issues exist in the     Bluetooth component due to improper validation of input.
    A local attacker can exploit these issues to execute     arbitrary code with system privileges. (CVE-2017-7050,     CVE-2017-7051)

  - A memory corruption issue exists in the Bluetooth     component due to improper validation of input. A local     attacker can exploit these issues to execute arbitrary     code with system privileges. (CVE-2017-7054)

  - A buffer overflow condition exists in the Contacts     component due to improper validation of user-supplied     input. An unauthenticated, remote attacker can exploit     this to cause a denial of service condition or the     execution of arbitrary code. (CVE-2017-7062)

  - A buffer overflow condition exists in the libarchive     component due to improper validation of user-supplied     input. An unauthenticated, remote attacker can exploit     this, via a specially crafted archive file, to cause a     denial of service condition or the execution of     arbitrary code. (CVE-2017-7068)

  - A certificate validation bypass vulnerability exists in     the curl component due to the program attempting to     resume TLS sessions even if the client certificate     fails. An unauthenticated, remote attacker can exploit     this to bypass validation mechanisms. (CVE-2017-7468)

  - A memory corruption issue exists in the Broadcom BCM43xx     family Wi-Fi Chips component that allows an     unauthenticated, remote attacker to execute arbitrary     code. (CVE-2017-9417)

According to its version, the installation of Tenable SecurityCenter on the remote host is affected by multiple vulnerabilities :

  - A flaw exists in the mod_session_crypto module due to     encryption for data and cookies using the configured     ciphers with possibly either CBC or ECB modes of     operation (AES256-CBC by default). An unauthenticated,     remote attacker can exploit this, via a padding oracle     attack, to decrypt information without knowledge of the     encryption key, resulting in the disclosure of     potentially sensitive information. (CVE-2016-0736)

  - A denial of service vulnerability exists in the     mod_auth_digest module during client entry allocation.
    An unauthenticated, remote attacker can exploit this,     via specially crafted input, to exhaust shared memory     resources, resulting in a server crash. (CVE-2016-2161)

  - The Apache HTTP Server is affected by a     man-in-the-middle vulnerability known as 'httpoxy' due     to a failure to properly resolve namespace conflicts in     accordance with RFC 3875 section 4.1.18. The HTTP_PROXY     environment variable is set based on untrusted user data     in the 'Proxy' header of HTTP requests. The HTTP_PROXY     environment variable is used by some web client     libraries to specify a remote proxy server. An     unauthenticated, remote attacker can exploit this, via a     crafted 'Proxy' header in an HTTP request, to redirect     an application's internal HTTP traffic to an arbitrary     proxy server where it may be observed or manipulated.
    (CVE-2016-5387, CVE-2016-1000102, CVE-2016-1000104)

  - A carry propagation error exists in the     Broadwell-specific Montgomery multiplication procedure     when handling input lengths divisible by but longer than     256 bits. This can result in transient authentication     and key negotiation failures or reproducible erroneous     outcomes of public-key operations with specially crafted     input. A man-in-the-middle attacker can possibly exploit     this issue to compromise ECDH key negotiations that     utilize Brainpool P-512 curves. (CVE-2016-7055)

  - A denial of service vulnerability exists in the     mod_http2 module due to improper handling of the     LimitRequestFields directive. An unauthenticated, remote     attacker can exploit this, via specially crafted     CONTINUATION frames in an HTTP/2 request, to inject     unlimited request headers into the server, resulting in     the exhaustion of memory resources. (CVE-2016-8740)

  - A flaw exists due to improper handling of whitespace     patterns in user-agent headers. An unauthenticated,     remote attacker can exploit this, via a specially     crafted user-agent header, to cause the program to     incorrectly process sequences of requests, resulting in     interpreting responses incorrectly, polluting the cache,     or disclosing the content from one request to a second     downstream user-agent. (CVE-2016-8743)

  - A flaw exits in libcurl in the randit() function within     file lib/rand.c due to improper initialization of the     32-bit random value, which is used, for example, to     generate Digest and NTLM authentication nonces,     resulting in weaker cryptographic operations than     expected. (CVE-2016-9594)

  - A floating pointer exception flaw exists in the     exif_convert_any_to_int() function in exif.c that is     triggered when handling TIFF and JPEG image tags. An     unauthenticated, remote attacker can exploit this to     cause a crash, resulting in a denial of service     condition. (CVE-2016-10158)

  - An integer overflow condition exists in the     phar_parse_pharfile() function in phar.c due to improper     validation when handling phar archives. An     unauthenticated, remote attacker can exploit this to     cause a crash, resulting in a denial of service     condition. (CVE-2016-10159)

  - An off-by-one overflow condition exists in the     phar_parse_pharfile() function in phar.c due to improper     parsing of phar archives. An unauthenticated, remote     attacker can exploit this to cause a crash, resulting in     a denial of service condition. (CVE-2016-10160)

  - An out-of-bounds read error exists in the     finish_nested_data() function in var_unserializer.c due     to improper validation of unserialized data. An     unauthenticated, remote attacker can exploit this to     cause a crash, resulting in a denial of service     condition or the disclosure of memory contents.
    (CVE-2016-10161)

  - A denial of service vulnerability exists in the     gdImageCreateFromGd2Ctx() function within file gd_gd2.c     in the GD Graphics Library (LibGD) when handling images     claiming to contain more image data than they actually     do. An unauthenticated, remote attacker can exploit this     to crash a process linked against the library.
    (CVE-2016-10167)

  - An out-of-bounds read error exists when handling packets     using the CHACHA20/POLY1305 or RC4-MD5 ciphers. An     unauthenticated, remote attacker can exploit this, via     specially crafted truncated packets, to cause a denial     of service condition. (CVE-2017-3731)

  - A carry propagating error exists in the x86_64     Montgomery squaring implementation that may cause the     BN_mod_exp() function to produce incorrect results. An     unauthenticated, remote attacker with sufficient     resources can exploit this to obtain sensitive     information regarding private keys. Note that this issue     is very similar to CVE-2015-3193. Moreover, the attacker     would additionally need online access to an unpatched     system using the target private key in a scenario with     persistent DH parameters and a private key that is     shared between multiple clients. For example, this can     occur by default in OpenSSL DHE based SSL/TLS cipher     suites. (CVE-2017-3732)

  - An out-of-bounds read error exists in the     phar_parse_pharfile() function in phar.c due to improper     parsing of phar archives. An unauthenticated, remote     attacker can exploit this to cause a crash, resulting in     a denial of service condition.

  - Multiple stored cross-site scripting (XSS)     vulnerabilities exist in unspecified scripts due to a     failure to validate input before returning it to users.
    An authenticated, remote authenticated attacker can     exploit these, via a specially crafted request, to     execute arbitrary script code in a user's browser     session.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is affected by the vulnerability described in GLSA-201701-47 (cURL: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in cURL. Please review the       CVE identifiers and bug reports referenced for details.
  Impact :

    Remote attackers could conduct a Man-in-the-Middle attack to obtain       sensitive information, cause a Denial of Service condition, or execute       arbitrary code.
  Workaround :

    There is no known workaround at this time.

Project curl Security Advisory :

libcurl's (new) internal function that returns a good 32bit random value was implemented poorly and overwrote the pointer instead of writing the value into the buffer the pointer pointed to.

This random value is used to generate nonces for Digest and NTLM authentication, for generating boundary strings in HTTP formposts and more. Having a weak or virtually non-existent random there makes these operations vulnerable.

This function is brand new in 7.52.0 and is the result of an overhaul to make sure libcurl uses strong random as much as possible - provided by the backend TLS crypto libraries when present. The faulty function was introduced in this commit.

We are not aware of any exploit of this flaw.

ID	Name	Product	Family	Severity
700170	Mac OS X 10.x < 10.12.6 Multiple Vulnerabilities	Nessus Network Monitor	Operating System Detection	critical
101957	macOS and Mac OS X Multiple Vulnerabilities (Security Update 2017-003)	Nessus	MacOS X Local Security Checks	high
97726	Tenable SecurityCenter 5.x < 5.4.3 Multiple Vulnerabilities (TNS-2017-04) (httpoxy)	Nessus	Misc.	medium
96644	GLSA-201701-47 : cURL: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
96120	FreeBSD : cURL -- uninitialized random vulnerability (c40ca16c-4d9f-4d70-8b6c-4d53aeb8ead4)	Nessus	FreeBSD Local Security Checks	high

Detections

Analytics

CVE-2016-9594

high

Tenable Plugins

critical

high

medium

critical

high