CVE-2014-2892 : Heap-based buffer overflow in the get_answer function in mmsh.c in libmms before 0.6.4 allows remote attackers to execut

Heap-based buffer overflow in the get_answer function in mmsh.c in libmms before 0.6.4 allows remote attackers to execute arbitrary code via a long line in an MMS over HTTP (MMSH) server response.

Published 2014-04-22 14:23:36

Updated 2017-08-29 01:34:35

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Exploit prediction scoring system (EPSS) score for CVE-2014-2892

Probability of exploitation activity in the next 30 days: 17.50%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 96 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-2892

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2014-2892

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-2892

https://exchange.xforce.ibmcloud.com/vulnerabilities/92640

libmms get_answer() buffer overflow CVE-2014-2892 Vulnerability Report
http://sourceforge.net/p/libmms/code/ci/03bcfccc22919c72742b7338d02859962861e0e8

libmms / Code / Commit [03bcfc]
Exploit;Patch
http://sourceforge.net/p/libmms/code/ci/master/tree/ChangeLog

libmms / Code / [a9f692] /ChangeLog
http://www.debian.org/security/2014/dsa-2916

Debian -- Security Information -- DSA-2916-1 libmms
https://security.gentoo.org/glsa/201612-29

libmms: Remote execution of arbitrary code (GLSA 201612-29) — Gentoo security
http://www.securityfocus.com/bid/66933

libmms MMSH Server Response Heap-Based Buffer Overflow Vulnerability
http://www.openwall.com/lists/oss-security/2014/04/18/14

oss-security - Re: libmms heap-based buffer overflow fix
Patch
http://lists.opensuse.org/opensuse-updates/2014-05/msg00001.html

openSUSE-SU-2014:0590-1: moderate: update for libmms

Products affected by CVE-2014-2892

Libmms Project » Libmms
Versions up to, including, (<=) 0.6.3
cpe:2.3:a:libmms_project:libmms:*:*:*:*:*:*:*:*
Matching versions
Libmms Project » Libmms » Version: 0.6.2
cpe:2.3:a:libmms_project:libmms:0.6.2:*:*:*:*:*:*:*
Matching versions
Libmms Project » Libmms » Version: 0.6.1
cpe:2.3:a:libmms_project:libmms:0.6.1:*:*:*:*:*:*:*
Matching versions
Libmms Project » Libmms » Version: 0.6
cpe:2.3:a:libmms_project:libmms:0.6:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-2892

Exploit prediction scoring system (EPSS) score for CVE-2014-2892

CVSS scores for CVE-2014-2892

CWE ids for CVE-2014-2892

References for CVE-2014-2892

Products affected by CVE-2014-2892