CVE-2017-7407: Buffer Overflow
First published: Mon Apr 03 2017(Updated: )
The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physically proximate attackers to obtain sensitive information from process memory in opportunistic circumstances by reading a workstation screen during use of a --write-out argument ending in a '%' character, which leads to a heap-based buffer over-read.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/httpd24-curl | <0:7.61.1-1.el6 | 0:7.61.1-1.el6 |
| redhat/httpd24-httpd | <0:2.4.34-7.el6 | 0:2.4.34-7.el6 |
| redhat/httpd24-nghttp2 | <0:1.7.1-7.el6 | 0:1.7.1-7.el6 |
| redhat/httpd24-curl | <0:7.61.1-1.el7 | 0:7.61.1-1.el7 |
| redhat/httpd24-httpd | <0:2.4.34-7.el7 | 0:2.4.34-7.el7 |
| redhat/httpd24-nghttp2 | <0:1.7.1-7.el7 | 0:1.7.1-7.el7 |
| redhat/curl | <7.54.0 | 7.54.0 |
| Curl | =7.53.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- https://access.redhat.com/errata/RHSA-2018:3558
- https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13
- https://security.gentoo.org/glsa/201709-14
- https://curl.haxx.se/docs/adv_20170403.html
- https://github.com/curl/curl/commit/1890d59905414ab84a
- https://github.com/curl/curl/commit/8e65877870c1
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1439191
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1439193
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1439192
- https://access.redhat.com/security/cve/cve-2017-7407
- https://bugzilla.redhat.com/show_bug.cgi?id=1439190
- https://www.cve.org/CVERecord?id=CVE-2017-7407 https://nvd.nist.gov/vuln/detail/CVE-2017-7407 https://curl.haxx.se/docs/adv_20170403.html
Frequently Asked Questions
What is the severity of CVE-2017-7407?
CVE-2017-7407 has been classified to allow sensitive information disclosure under specific circumstances.
How do I fix CVE-2017-7407?
To mitigate CVE-2017-7407, upgrade curl to version 7.61.1 or later on affected systems.
What versions of curl are affected by CVE-2017-7407?
CVE-2017-7407 affects curl version 7.53.1 specifically, as well as earlier versions.
Can CVE-2017-7407 be exploited remotely?
CVE-2017-7407 requires physical proximity to the affected system for exploitation.
What is the impact of CVE-2017-7407 on network security?
CVE-2017-7407 can lead to exposure of sensitive information displayed on the screen while using specific commands.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-7407
- agent/software-canonical-lookup
- agent/weakness
- agent/references
- agent/remedy
- agent/severity
- agent/author
- agent/event
- agent/description
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/haxx
- canonical/curl
- version/curl/7.53.1