Over...">patch is now available to fix this issue.
Over...">patch is now available to fix this issue.
Over...">
HistorySep 13, 2017 - 7:24 a.m.
Vulnerability Spotlight: LibOFX Tag Parsing Code Execution Vulnerability
0.002 Low
EPSS
Percentile
55.3%
This vulnerability was discovered by Cory Duplantis of Talos<br /><br /><i>Update 9/20/2017: A <a href=“https://github.com/libofx/libofx/commit/a70934eea95c76a7737b83773bffe8738935082d”>patch</a> is now available to fix this issue.</i><br /><h3>Overview</h3><br />LibOFX is an open source implementation of OFX (Open Financial Exchange) an open format used by financial institutions to share financial data with clients. As an implementation of a complex standard, this library is used by financial software such as GnuCash. Talos has discovered an exploitable buffer overflow in the implementation: a specially crafted OFX file can cause a write out of bounds resulting in code execution. This vulnerability is not currently patched and Talos has not received a response from the developers within the period specified by the <a href=“https://www.cisco.com/c/en/us/about/security-center/vendor-vulnerability-policy.html”>Vendor Vulnerability Reporting and Disclosure Policy</a>.<br /><br /><a></a><br /><br /><h3>TALOS-2017-0317 (CVE-2017-2816) - LibOFX Tag Parsing Code Execution Vulnerability</h3><br />Ironically, the vulnerability is located in the way that tags are parsed by the sanitize function. In the function, the tag’s names are stored locally on the stack, a too long tag name results in a stack overflow.<br /><br />More details can be found in the vulnerability reports:<a href=“http://www.talosintelligence.com/reports/TALOS-2017-0317”>TALOS-2017-0317</a><br /><br />Tested Version: LibOFX 0.9.11<br /><br /><h2>Discussion</h2><br />As an open source library, LibOFX may be used in various financial applications. This vulnerability presents many attractive features for attackers. User interaction is not necessarily required to trigger the vulnerability, and any systems presenting with this vulnerability are likely to contain valuable financial information which can be stolen to conduct identity theft, fraud, or easily sold on to other criminals.<br /><br />Organisations may not be aware of the presence of this library being used to parse OFX files in third party software, or in software that has been developed as part of an in-house system. Keeping track of open source libraries used within in-house projects, and quickly applying patches supplied by third party vendors is vital to ensure that vulnerabilities such as these, which are particularly enticing to attackers, are properly managed.<br /><br /><h2>Coverage</h2><div><br /></div>The following Snort Rules will detect exploitation attempts. Note that additional rules may be released at a future date and current rules are subject to change pending additional vulnerability information. For the most current rule information, please refer to your FireSIGHT Management Center or Snort.org.<br /><br />Snort Rules: 42277-42278<br /><br /><div>
<a href=“http://feeds.feedburner.com/~ff/feedburner/Talos?a=vlOSJxYrSZw:Dq1uEVfSRtU:yIl2AUoC8zA”><img src=“http://feeds.feedburner.com/~ff/feedburner/Talos?d=yIl2AUoC8zA”></img></a>
</div><img src=“http://feeds.feedburner.com/~r/feedburner/Talos/~4/vlOSJxYrSZw” height=“1” width=“1” alt />
Related
talostalosLibOFX Tag Parsing Code Execution Vulnerability2017-09-13 00:00:00
freebsdfreebsdlibofx -- exploitable buffer overflow2017-09-13 00:00:00
nessusnessusFreeBSD : libofx -- exploitable buffer overflow (58fafead-cd13-472f-a9bd-d0173ba1b04c)2017-09-28 00:00:00Debian DLA-1192-1 : libofx security update2017-11-27 00:00:00openSUSE Security Update : libofx (openSUSE-2018-820)2018-08-08 00:00:00
debiancvedebiancveCVE-2017-28162017-09-13 18:29:00
osvosvCVE-2017-28162017-09-13 18:29:00libofx - security update2017-11-26 00:00:00
ubuntucveubuntucveCVE-2017-28162017-09-13 00:00:00CVE-2017-29202017-10-05 00:00:00
prionprionBuffer overflow2017-09-13 18:29:00
nvdnvdCVE-2017-28162017-09-13 18:29:00
cvecveCVE-2017-28162017-09-13 18:29:00
archlinuxarchlinux[ASA-201712-3] libofx: arbitrary code execution2017-12-02 00:00:00
cvelistcvelistCVE-2017-28162017-09-13 00:00:00
openvasopenvasDebian: Security Advisory (DLA-1192-1)2023-03-08 00:00:00openSUSE: Security Advisory for libofx (openSUSE-SU-2018:2229-1)2018-08-08 00:00:00Fedora Update for libofx FEDORA-2018-1b3a73b45f2018-04-13 00:00:00
debiandebian[SECURITY] [DLA 1192-1] libofx security update2017-11-26 15:58:53
susesuseSecurity update for libofx (important)2018-08-07 15:07:58
mageiamageiaUpdated libofx packages fix security vulnerabilities
2018-04-30 22:08:07
gentoogentoolibofx: Multiple vulnerabilities2019-08-31 00:00:00
fedorafedora[SECURITY] Fedora 28 Update: libofx-0.9.10-6.fc282018-04-07 22:16:41[SECURITY] Fedora 26 Update: libofx-0.9.10-5.fc262018-04-11 19:08:49[SECURITY] Fedora 27 Update: libofx-0.9.10-5.fc272018-04-11 16:32:20
Over...">
HistorySep 13, 2017 - 7:24 a.m.
Vulnerability Spotlight: LibOFX Tag Parsing Code Execution Vulnerability
0.002 Low
EPSS
Percentile
55.3%
This vulnerability was discovered by Cory Duplantis of Talos<br /><br /><i>Update 9/20/2017: A <a href=“https://github.com/libofx/libofx/commit/a70934eea95c76a7737b83773bffe8738935082d”>patch</a> is now available to fix this issue.</i><br /><h3>Overview</h3><br />LibOFX is an open source implementation of OFX (Open Financial Exchange) an open format used by financial institutions to share financial data with clients. As an implementation of a complex standard, this library is used by financial software such as GnuCash. Talos has discovered an exploitable buffer overflow in the implementation: a specially crafted OFX file can cause a write out of bounds resulting in code execution. This vulnerability is not currently patched and Talos has not received a response from the developers within the period specified by the <a href=“https://www.cisco.com/c/en/us/about/security-center/vendor-vulnerability-policy.html”>Vendor Vulnerability Reporting and Disclosure Policy</a>.<br /><br /><a></a><br /><br /><h3>TALOS-2017-0317 (CVE-2017-2816) - LibOFX Tag Parsing Code Execution Vulnerability</h3><br />Ironically, the vulnerability is located in the way that tags are parsed by the sanitize function. In the function, the tag’s names are stored locally on the stack, a too long tag name results in a stack overflow.<br /><br />More details can be found in the vulnerability reports:<a href=“http://www.talosintelligence.com/reports/TALOS-2017-0317”>TALOS-2017-0317</a><br /><br />Tested Version: LibOFX 0.9.11<br /><br /><h2>Discussion</h2><br />As an open source library, LibOFX may be used in various financial applications. This vulnerability presents many attractive features for attackers. User interaction is not necessarily required to trigger the vulnerability, and any systems presenting with this vulnerability are likely to contain valuable financial information which can be stolen to conduct identity theft, fraud, or easily sold on to other criminals.<br /><br />Organisations may not be aware of the presence of this library being used to parse OFX files in third party software, or in software that has been developed as part of an in-house system. Keeping track of open source libraries used within in-house projects, and quickly applying patches supplied by third party vendors is vital to ensure that vulnerabilities such as these, which are particularly enticing to attackers, are properly managed.<br /><br /><h2>Coverage</h2><div><br /></div>The following Snort Rules will detect exploitation attempts. Note that additional rules may be released at a future date and current rules are subject to change pending additional vulnerability information. For the most current rule information, please refer to your FireSIGHT Management Center or Snort.org.<br /><br />Snort Rules: 42277-42278<br /><br /><div>
<a href=“http://feeds.feedburner.com/~ff/feedburner/Talos?a=vlOSJxYrSZw:Dq1uEVfSRtU:yIl2AUoC8zA”><img src=“http://feeds.feedburner.com/~ff/feedburner/Talos?d=yIl2AUoC8zA”></img></a>
</div><img src=“http://feeds.feedburner.com/~r/feedburner/Talos/~4/vlOSJxYrSZw” height=“1” width=“1” alt />
Related
talostalosLibOFX Tag Parsing Code Execution Vulnerability2017-09-13 00:00:00freebsdfreebsdlibofx -- exploitable buffer overflow2017-09-13 00:00:00nessusnessusFreeBSD : libofx -- exploitable buffer overflow (58fafead-cd13-472f-a9bd-d0173ba1b04c)2017-09-28 00:00:00Debian DLA-1192-1 : libofx security update2017-11-27 00:00:00openSUSE Security Update : libofx (openSUSE-2018-820)2018-08-08 00:00:00debiancvedebiancveCVE-2017-28162017-09-13 18:29:00osvosvCVE-2017-28162017-09-13 18:29:00libofx - security update2017-11-26 00:00:00ubuntucveubuntucveCVE-2017-28162017-09-13 00:00:00CVE-2017-29202017-10-05 00:00:00prionprionBuffer overflow2017-09-13 18:29:00nvdnvdCVE-2017-28162017-09-13 18:29:00cvecveCVE-2017-28162017-09-13 18:29:00archlinuxarchlinux[ASA-201712-3] libofx: arbitrary code execution2017-12-02 00:00:00cvelistcvelistCVE-2017-28162017-09-13 00:00:00openvasopenvasDebian: Security Advisory (DLA-1192-1)2023-03-08 00:00:00openSUSE: Security Advisory for libofx (openSUSE-SU-2018:2229-1)2018-08-08 00:00:00Fedora Update for libofx FEDORA-2018-1b3a73b45f2018-04-13 00:00:00debiandebian[SECURITY] [DLA 1192-1] libofx security update2017-11-26 15:58:53susesuseSecurity update for libofx (important)2018-08-07 15:07:58mageiamageiaUpdated libofx packages fix security vulnerabilities
2018-04-30 22:08:07gentoogentoolibofx: Multiple vulnerabilities2019-08-31 00:00:00fedorafedora[SECURITY] Fedora 28 Update: libofx-0.9.10-6.fc282018-04-07 22:16:41[SECURITY] Fedora 26 Update: libofx-0.9.10-5.fc262018-04-11 19:08:49[SECURITY] Fedora 27 Update: libofx-0.9.10-5.fc272018-04-11 16:32:20
Vulnerability Spotlight: LibOFX Tag Parsing Code Execution Vulnerability
0.002 Low
EPSS
Percentile
55.3%
This vulnerability was discovered by Cory Duplantis of Talos<br /><br /><i>Update 9/20/2017: A <a href=“https://github.com/libofx/libofx/commit/a70934eea95c76a7737b83773bffe8738935082d”>patch</a> is now available to fix this issue.</i><br /><h3>Overview</h3><br />LibOFX is an open source implementation of OFX (Open Financial Exchange) an open format used by financial institutions to share financial data with clients. As an implementation of a complex standard, this library is used by financial software such as GnuCash. Talos has discovered an exploitable buffer overflow in the implementation: a specially crafted OFX file can cause a write out of bounds resulting in code execution. This vulnerability is not currently patched and Talos has not received a response from the developers within the period specified by the <a href=“https://www.cisco.com/c/en/us/about/security-center/vendor-vulnerability-policy.html”>Vendor Vulnerability Reporting and Disclosure Policy</a>.<br /><br /><a></a><br /><br /><h3>TALOS-2017-0317 (CVE-2017-2816) - LibOFX Tag Parsing Code Execution Vulnerability</h3><br />Ironically, the vulnerability is located in the way that tags are parsed by the sanitize function. In the function, the tag’s names are stored locally on the stack, a too long tag name results in a stack overflow.<br /><br />More details can be found in the vulnerability reports:<a href=“http://www.talosintelligence.com/reports/TALOS-2017-0317”>TALOS-2017-0317</a><br /><br />Tested Version: LibOFX 0.9.11<br /><br /><h2>Discussion</h2><br />As an open source library, LibOFX may be used in various financial applications. This vulnerability presents many attractive features for attackers. User interaction is not necessarily required to trigger the vulnerability, and any systems presenting with this vulnerability are likely to contain valuable financial information which can be stolen to conduct identity theft, fraud, or easily sold on to other criminals.<br /><br />Organisations may not be aware of the presence of this library being used to parse OFX files in third party software, or in software that has been developed as part of an in-house system. Keeping track of open source libraries used within in-house projects, and quickly applying patches supplied by third party vendors is vital to ensure that vulnerabilities such as these, which are particularly enticing to attackers, are properly managed.<br /><br /><h2>Coverage</h2><div><br /></div>The following Snort Rules will detect exploitation attempts. Note that additional rules may be released at a future date and current rules are subject to change pending additional vulnerability information. For the most current rule information, please refer to your FireSIGHT Management Center or Snort.org.<br /><br />Snort Rules: 42277-42278<br /><br /><div>
<a href=“http://feeds.feedburner.com/~ff/feedburner/Talos?a=vlOSJxYrSZw:Dq1uEVfSRtU:yIl2AUoC8zA”><img src=“http://feeds.feedburner.com/~ff/feedburner/Talos?d=yIl2AUoC8zA”></img></a>
</div><img src=“http://feeds.feedburner.com/~r/feedburner/Talos/~4/vlOSJxYrSZw” height=“1” width=“1” alt />
Related