Home

CVE-2017-1000100

Description

When doing a TFTP transfer and curl/libcurl is given a URL that contains a very long file name (longer than about 515 bytes), the file name is truncated to fit within the buffer boundaries, but the buffer size is still wrongly updated to use the untruncated length. This too large value is then used in the sendto() call, making curl attempt to send more data than what is actually put into the buffer. The endto() function will then read beyond the end of the heap based buffer. A malicious HTTP(S) server could redirect a vulnerable libcurl-using client to a crafted TFTP URL (if the client hasnt restricted which protocols it allows redirects to) and trick it to send private memory contents to a remote server over UDP. Limit curls redirect protocols with --proto-redir and libcurls with CURLOPT_REDIR_PROTOCOLS.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.962

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Curl For Windows 7.50.3Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.6Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.4Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.5Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.7Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.22.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.23.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.23.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.24.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.25.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.26.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.27.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.28.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.28.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.29.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.30.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.31.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.32.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.33.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.17.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.18.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.18.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.18.2Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.2Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.3Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.4Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.5Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.6Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.19.7Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.20.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.20.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.2Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.21.3Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.34.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.35.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.36.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.37.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.37.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.38.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.2Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.3Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.4Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.15.5Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.16.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.16.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.16.2Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.16.3Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.16.4Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.17.0Windows
Vulnerabilities CVE-2014-8150,CVE-2014-8151,CVE-2017-1000100,CVE-2017-1000254 are affected in Curl For Windows 7.39Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.50.0Windows
Vulnerabilities CVE-2016-7141,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.50.1Windows
Vulnerabilities CVE-2016-7167,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.50.2Windows
Vulnerabilities CVE-2017-1000099,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.54.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.40.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.41.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.42.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.42.1Windows
Vulnerabilities CVE-2016-3739,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.43.0Windows
Vulnerabilities CVE-2016-3739,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.44.0Windows
Vulnerabilities CVE-2016-3739,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.45.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.46.0Windows
Vulnerabilities CVE-2016-3739,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.47.0Windows
Vulnerabilities CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.47.1Windows
Vulnerabilities CVE-2016-3739,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.48.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.49.0Windows
Vulnerabilities CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.49.1Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.51.0Windows
Vulnerabilities CVE-2016-9594,CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.52.0Windows
Vulnerabilities CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254,CVE-2017-2629 are affected in Curl For Windows 7.52.1Windows
Vulnerabilities CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254 are affected in Curl For Windows 7.53.0Windows
Multiple Vulnerabilities are affected in Curl For Windows 7.53.1Windows
Vulnerabilities CVE-2017-1000100,CVE-2017-1000101,CVE-2017-1000254,CVE-2017-9502 are affected in Curl For Windows 7.54.0Windows
Vulnerabilities CVE-2017-1000101,CVE-2017-1000100,CVE-2017-1000099 are fixed in Curl For Windows 7.55.0Windows
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.1Mac
Multiple vulnerabilities are fixed in Security Update 2017-001 macOS High Sierra v10.13.1Mac
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.47.0-1ubuntu2.3_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.47.0-1ubuntu2.3_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.52.1-4ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.52.1-4ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.35.0-1ubuntu2.11_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) curl_7.35.0-1ubuntu2.11_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.47.0-1ubuntu2.3_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.47.0-1ubuntu2.3_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.52.1-4ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.52.1-4ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.35.0-1ubuntu2.11_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3_7.35.0-1ubuntu2.11_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.47.0-1ubuntu2.3_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.47.0-1ubuntu2.3_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.52.1-4ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.52.1-4ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.35.0-1ubuntu2.11_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-nss_7.35.0-1ubuntu2.11_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.47.0-1ubuntu2.3_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.47.0-1ubuntu2.3_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.52.1-4ubuntu1.2_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.52.1-4ubuntu1.2_amd64.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.35.0-1ubuntu2.11_i386.debLinux
HTTP, HTTPS, and FTP client and client libraries (USN-3441-1) libcurl3-gnutls_7.35.0-1ubuntu2.11_amd64.debLinux
curl security update(DSA-3992-1) curl_7.52.1-5_i386.debLinux
curl security update(DSA-3992-1) curl_7.38.0-4+deb8u6_i386.debLinux
Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000100)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601312Security Update 2017-001 macOS High Sierra v10.13.1

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234