CVE-2015-7547
CVE-2015-7547
Vexday Risk Score
75Prioridade alta
Decisão SSVC (CISA)
Act
Exploração + impacto → ação imediata
Maturidade do exploit
Arma pronta
PoC popular no GitHub (544 estrelas) — código de exploração amplamente disponível.
CVSS —EPSS 89.6%KEV nãoPoC públicaNuclei —Metasploit —Patch referenciado
Ciclo de vida
10 fev 2016PoC pública
18 fev 2016Publicada no NVD
Recomendação: Corrigir o quanto antes — há exploração ativa confirmada.
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 29
githubgithub.com/fjserna/CVE-2015-7547★ 544githubgithub.com/eSentire/cve-2015-7547-public★ 10githubgithub.com/jgajek/cve-2015-7547★ 8githubgithub.com/cakuzo/CVE-2015-7547★ 5githubgithub.com/t0r0t0r0/CVE-2015-7547★ 1githubgithub.com/miracle03/CVE-2015-7547-master★ 0githubgithub.com/Stick-U235/CVE-2015-7547-Research★ 0githubgithub.com/Amilaperera12/Glibc-Vulnerability-Exploit-CVE-2015-7547★ 0githubgithub.com/bluebluelan/CVE-2015-7547-proj-master★ 0githubgithub.com/babykillerblack/CVE-2015-7547★ 0githubgithub.com/rexifiles/rex-sec-glibc★ 0vulncheckvulncheck.com/xdb/b99728f6c6e2não verificadovulncheckvulncheck.com/xdb/e789fb086b1fnão verificadovulncheckvulncheck.com/xdb/a972b421d0c1não verificadovulncheckvulncheck.com/xdb/6ca51ee2343enão verificadovulncheckvulncheck.com/xdb/1dc3a463272enão verificadovulncheckvulncheck.com/xdb/356972add841não verificadocve_referencepacketstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.htmlnão verificadovulncheckvulncheck.com/xdb/bb7c175544abnão verificadocve_referencepacketstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.htmlnão verificadocve_referencepacketstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlnão verificadocve_referencepacketstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlnão verificadocve_referencewww.exploit-db.com/exploits/39454/não verificadocve_referencewww.exploit-db.com/exploits/40339/não verificadoexploitdbwww.exploit-db.com/exploits/39454não verificadoexploitdbwww.exploit-db.com/exploits/40339não verificadovulncheckvulncheck.com/xdb/5802082611f4não verificadovulncheckvulncheck.com/xdb/048e7854f0canão verificadovulncheckvulncheck.com/xdb/9aca57789b8bnão verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Referências
http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflowhttp://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.htmlhttp://marc.info/?l=bugtraq&m=145596041017029&w=2http://marc.info/?l=bugtraq&m=145672440608228&w=2