Lucene search

RustsecRUSTSEC-2017-0005

HistoryMay 06, 2017 - 12:00 p.m.

Large cookie Max-Age values can cause a denial of service

2017-05-0612:00:00

rustsec.org

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

41.2%

JSON

Affected versions of this crate use the time crate and the method
Duration::seconds to parse the Max-Age duration cookie setting. This method
will panic if the value is greater than 2^64/1000 and less than or equal to
2^64, which can result in denial of service for a client or server.

This flaw was corrected by explicitly checking for the Max-Age being in this
integer range and clamping the value to the maximum duration value.

CPENameOperatorVersion
cookiege0.6.0
cookielt0.6.2
cookiege0.7.0-0
cookielt0.7.6

Name	Operator	Version
cookie	ge	0.6.0
cookie	lt	0.6.2
cookie	ge	0.7.0-0
cookie	lt	0.7.6

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

41.2%

JSON

Related for RUSTSEC-2017-0005