The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng before 3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty field that should have contained a hostname or IP address.
{"ubuntucve": [{"lastseen": "2023-01-27T14:26:47", "description": "The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng\nbefore 3.0 allows remote attackers to cause a denial of service (NULL\npointer dereference and application crash) via an empty field that should\nhave contained a hostname or IP address.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2017-06-26T00:00:00", "type": "ubuntucve", "title": "CVE-2017-7458", "bulletinFamily": "info", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2017-7458"], "modified": "2017-06-26T00:00:00", "id": "UB:CVE-2017-7458", "href": "https://ubuntu.com/security/CVE-2017-7458", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "debiancve": [{"lastseen": "2022-07-20T20:43:19", "description": "The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng before 3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty field that should have contained a hostname or IP address.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "baseScore": 7.5, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0", "userInteraction": "NONE"}, "impactScore": 3.6}, "published": "2017-06-26T23:29:00", "type": "debiancve", "title": "CVE-2017-7458", "bulletinFamily": "info", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2017-7458"], "modified": "2017-06-26T23:29:00", "id": "DEBIANCVE:CVE-2017-7458", "href": "https://security-tracker.debian.org/tracker/CVE-2017-7458", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "openvas": [{"lastseen": "2019-05-29T18:34:12", "description": "The host is installed with ntopng and is prone to multiple vulnerabilities.", "cvss3": {}, "published": "2017-11-06T00:00:00", "type": "openvas", "title": "ntopng Multiple Vulnerabilities", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2017-7458", "CVE-2017-7459", "CVE-2017-7416"], "modified": "2018-10-19T00:00:00", "id": "OPENVAS:1361412562310112105", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310112105", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ntopng_mult_vuln.nasl 11982 2018-10-19 08:49:21Z mmartin $\n#\n# ntopng Multiple Vulnerabilities\n#\n# Authors:\n# Adrian Steins <adrian.steins@greenbone.net>\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:ntop:ntopng\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.112105\");\n script_version(\"$Revision: 11982 $\");\n script_cve_id(\"CVE-2017-7458\", \"CVE-2017-7459\", \"CVE-2017-7416\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-19 10:49:21 +0200 (Fri, 19 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2017-11-06 15:50:16 +0200 (Mon, 06 Nov 2017)\");\n script_name(\"ntopng Multiple Vulnerabilities\");\n\n script_tag(name:\"summary\", value:\"The host is installed with ntopng and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple vulnerabilities exist within ntopng:\n\n - The NetworkInterface::getHost function in NetworkInterface.cpp allows remote attackers to cause a denial of service\n (NULL pointer dereference and application crash) via an empty field that should have contained a hostname or IP address (CVE-2017-7458).\n\n - HTTP Response Splitting (CVE-2017-7459).\n\n - Cross-site scripting (XSS) because GET and POST parameters are improperly validated (CVE-2017-7416).\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow an attacker to cause a denial of service and/or inject arbitrary script code.\");\n\n script_tag(name:\"affected\", value:\"ntopng prior to version 3.0\");\n\n script_tag(name:\"solution\", value:\"Upgrade to ntopng 3.0 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n script_xref(name:\"URL\", value:\"https://github.com/ntop/ntopng/blob/3.0/CHANGELOG.md\");\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Web application abuses\");\n script_dependencies(\"gb_ntopng_detect.nasl\");\n script_mandatory_keys(\"ntopng/installed\");\n script_require_ports(\"Services/www\", 3000);\n\n script_xref(name:\"URL\", value:\"http://www.ntop.org/\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!appPort = get_app_port(cpe:CPE)){\n exit(0);\n}\n\nif(!ntopngVer = get_app_version(cpe:CPE, port:appPort)){\n exit(0);\n}\n\nif(version_is_less(version:ntopngVer, test_version:\"3.0\"))\n{\n report = report_fixed_ver(installed_version:ntopngVer, fixed_version:\"3.0\");\n security_message(data:report, port:appPort);\n exit(0);\n}\n\nexit(99);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}]}
CVE-2017-7458
