CVE-2017-7523

Cygwin versions 1.7.2 up to and including 1.8.0 are vulnerable to buffer overflow vulnerability in wcsxfrm/wcsxfrm_l functions resulting into denial-of-service by crashing the process or potential hijack of the process running with administrative privileges triggered by specially crafted input string.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://cygwin.com/ml/cygwin/2017-05/msg00149.html	Exploit Mailing List Vendor Advisory
https://cygwin.com/ml/cygwin/2017-05/msg00149.html	Exploit Mailing List Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cygwin:cygwin:1.7.2:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.3:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.5:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.6:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.7:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.8:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.9:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.10:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.11:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.12:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.13:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.14:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.15:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.16:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.17:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.18:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.19:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.21:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.22:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.23:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.24:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.25:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.26:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.27:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.28:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.29:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.31:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.32:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.33:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.34:::::::*
	cpe:2.3:a:cygwin:cygwin:1.7.35:::::::*
	cpe:2.3:a:cygwin:cygwin:1.8.0:::::::*

History

21 Nov 2024, 03:32

Type	Values Removed	Values Added
References	~~() https://cygwin.com/ml/cygwin/2017-05/msg00149.html - Exploit, Mailing List, Vendor Advisory~~	() https://cygwin.com/ml/cygwin/2017-05/msg00149.html - Exploit, Mailing List, Vendor Advisory

Information

Published : 2017-07-21 22:29

Updated : 2025-04-20 01:37

NVD link : CVE-2017-7523

Mitre link : CVE-2017-7523

CVE.ORG link : CVE-2017-7523

JSON object : View

Products Affected

cygwin

cygwin

CWE

CWE-787

Out-of-bounds Write

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2017-7523", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2017-07-21T22:29:00.283", "references": [{"url": "https://cygwin.com/ml/cygwin/2017-05/msg00149.html", "tags": ["Exploit", "Mailing List", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://cygwin.com/ml/cygwin/2017-05/msg00149.html", "tags": ["Exploit", "Mailing List", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Cygwin versions 1.7.2 up to and including 1.8.0 are vulnerable to buffer overflow vulnerability in wcsxfrm/wcsxfrm_l functions resulting into denial-of-service by crashing the process or potential hijack of the process running with administrative privileges triggered by specially crafted input string."}, {"lang": "es", "value": "Cygwin versiones 1.7.2 hasta e incluyendo a 1.8.0, son susceptibles a una vulnerabilidad de desbordamiento de b\u00fafer en las funciones wcsxfrm y wcsxfrm_l resultando en una denegaci\u00f3n de servicio por el bloqueo o el posible secuestro del proceso que se ejecuta con privilegios administrativos activado por una cadena de entrada especialmente creada."}], "lastModified": "2025-04-20T01:37:25.860", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28230858-0B1C-4336-8C5C-86C96DFA098F"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "581471BF-47F8-4742-986D-ADCD70179D5C"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1D9333B-AB0D-4ACF-9747-5ED10CE5C073"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB48C8F3-1BAE-4159-95C7-ECF847ED8E59"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0165998-89F7-4891-8CC7-905380858261"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49200723-56CD-44E7-9E8F-5213F1006ACE"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83811F47-2B4B-4659-86A1-AE36375DFB72"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A57C27C7-2DC7-40C4-BCA6-997409AEE479"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6BF3225-5B2C-4CD9-80D4-ABC64745FB2C"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A964D38B-3B81-4891-B01B-527A2EE7ACC0"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B96CD403-2DF6-44CB-AB89-83B392061CAF"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1266B5C-D791-430A-ADC7-DB279624AB03"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D58DCAD-1D5E-4891-B627-98FAA8E11D15"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B653FC24-6783-4A25-84A3-AF08F6590B06"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3E839FA-A8B6-490B-B5AB-39EB9625D05F"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF2DA96F-099E-4F6C-A836-1C0EFD32CE46"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A49C1A8-8A3F-4C05-86ED-42B7DED2A719"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CC0DABE-12A0-4832-B177-7146F086ECE3"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F127A321-5212-471A-A132-4526260E6C1D"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "044A1B33-23A1-40C0-99A2-819702B177DE"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E19116C2-EB1C-403A-9965-3113935317CE"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E279B8F-9545-4B17-94CE-74C8D79AAEF9"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9C7B4E2-CC33-4D47-AF3C-74022E784D2E"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A346A2F6-B834-4DB3-839F-1F5A9A11E1B3"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB231BE4-64CB-44BE-81EF-7697AB63DAA7"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.29:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4ECD96C-EFE2-449D-AD26-F754CC622978"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BE94167-C3B7-4A16-9886-6ADDFB2135FA"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8CD0846-39D0-4736-9D78-C01FA5ED42B5"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8567DA10-2EF4-468D-A03E-DF84BEDDA4CB"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "169F927F-EB92-41A9-8781-BD04C0538793"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.7.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8AA4897-2A28-4198-B86F-283D21607859"}, {"criteria": "cpe:2.3:a:cygwin:cygwin:1.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1741D63-6937-4C12-BAA4-06679806E4BA"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2017-7523

7.5^/10

5.0^/10

Attach tags to `CVE-2017-7523`