CVE-2017-12613

LOW

Description

When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input.

References

http://www.apache.org/dist/apr/Announcement1.x.html

http://www.securityfocus.com/bid/101560

http://www.securitytracker.com/id/1042004

https://access.redhat.com/errata/RHSA-2017:3270

https://access.redhat.com/errata/RHSA-2017:3475

https://access.redhat.com/errata/RHSA-2017:3476

https://access.redhat.com/errata/RHSA-2017:3477

https://access.redhat.com/errata/RHSA-2018:0316

https://access.redhat.com/errata/RHSA-2018:0465

https://access.redhat.com/errata/RHSA-2018:0466

https://access.redhat.com/errata/RHSA-2018:1253

https://lists.apache.org/thread.html/12489f2e4a9f9d390235c16298aca0d20658789de80d553513977f13%40%3Cannounce.apache.org%3E

https://lists.debian.org/debian-lts-announce/2017/11/msg00005.html

https://svn.apache.org/viewvc?view=revision&revision=1807976

Details

Source: MITRE

Published: 2017-10-24

Updated: 2019-10-03

Type: CWE-125

Risk Information

CVSS v2.0

Base Score: 3.6

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:P

Impact Score: 4.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3.0

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Impact Score: 5.2

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:apache:portable_runtime:*:*:*:*:*:*:*:* versions up to 1.6.2 (inclusive)

Tenable Plugins

View all (32 total)

IDNameProductFamilySeverity
144075IBM HTTP Server 7.0.0.0 < 7.0.0.45 / 8.0.0.0 < 8.0.0.15 / 8.5.0.0 < 8.5.5.14 / 9.0.0.0 < 9.0.0.7 Information Disclosure (304539)NessusWeb Servers
low
127354NewStart CGSL MAIN 4.05 : apr Vulnerability (NS-SA-2019-0115)NessusNewStart CGSL Local Security Checks
low
127140NewStart CGSL MAIN 5.04 : apr Vulnerability (NS-SA-2019-0001)NessusNewStart CGSL Local Security Checks
low
124955EulerOS Virtualization 3.0.1.0 : apr (EulerOS-SA-2019-1452)NessusHuawei Local Security Checks
low
124877EulerOS Virtualization for ARM 64 3.0.1.0 : apr (EulerOS-SA-2019-1374)NessusHuawei Local Security Checks
low
700518macOS < 10.14 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
121778Photon OS 1.0: Apr PHSA-2017-1.0-0093NessusPhotonOS Local Security Checks
high
121776Photon OS 2.0: Apr PHSA-2017-0053NessusPhotonOS Local Security Checks
medium
118678F5 Networks BIG-IP : Apache Portable Runtime vulnerability (K52319810)NessusF5 Networks Local Security Checks
low
118575macOS 10.13.6 Multiple Vulnerabilities (Security Update 2018-002)NessusMacOS X Local Security Checks
critical
118573macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-005)NessusMacOS X Local Security Checks
critical
118178macOS < 10.14 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
111903Photon OS 1.0: Apr / Krb5 / Linux / Ncurses / Subversion PHSA-2017-1.0-0093 (deprecated)NessusPhotonOS Local Security Checks
high
111902Photon OS 2.0: Apr / Ncurses PHSA-2017-0053 (deprecated)NessusPhotonOS Local Security Checks
medium
109889SUSE SLES11 Security Update : libapr1 (SUSE-SU-2018:1322-1)NessusSuSE Local Security Checks
low
109719openSUSE Security Update : libapr1 (openSUSE-2018-450)NessusSuSE Local Security Checks
low
109679SUSE SLES12 Security Update : libapr1 (SUSE-SU-2018:1196-1)NessusSuSE Local Security Checks
low
109391RHEL 6 / 7 : apr (RHSA-2018:1253)NessusRed Hat Local Security Checks
low
107208RHEL 6 / 7 : Red Hat JBoss Web Server 3.1.0 Service Pack 2 (RHSA-2018:0466)NessusRed Hat Local Security Checks
medium
105866Fedora 27 : apr (2017-48368de8c9)NessusFedora Local Security Checks
low
105369RHEL 6 : Red Hat JBoss Core Services Apache HTTP Server 2.4.23 (RHSA-2017:3477) (Optionsbleed)NessusRed Hat Local Security Checks
high
105368RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.23 (RHSA-2017:3476) (Optionsbleed)NessusRed Hat Local Security Checks
high
105052Amazon Linux AMI : apr (ALAS-2017-928)NessusAmazon Linux Local Security Checks
low
105048Virtuozzo 7 : apr / apr-devel (VZLSA-2017-3270)NessusVirtuozzo Local Security Checks
low
104922EulerOS 2.0 SP2 : apr (EulerOS-SA-2017-1304)NessusHuawei Local Security Checks
low
104921EulerOS 2.0 SP1 : apr (EulerOS-SA-2017-1303)NessusHuawei Local Security Checks
low
104866Scientific Linux Security Update : apr on SL6.x, SL7.x i386/x86_64 (20171129)NessusScientific Linux Local Security Checks
low
104842RHEL 6 / 7 : apr (RHSA-2017:3270)NessusRed Hat Local Security Checks
low
104838Oracle Linux 6 / 7 : apr (ELSA-2017-3270)NessusOracle Linux Local Security Checks
low
104818CentOS 6 / 7 : apr (CESA-2017:3270)NessusCentOS Local Security Checks
low
104603Fedora 26 : apr (2017-8d2cfc3752)NessusFedora Local Security Checks
low
104412Debian DLA-1162-1 : apr security updateNessusDebian Local Security Checks
low