CVE-2016-5301 - Vulnerability Details - OpenCVE

The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Arvidn	Libtorrent
Opensuse	Leap Opensuse

Configuration 1 [-]

OR	cpe:2.3:o:opensuse:leap:42.1:::::::*
	cpe:2.3:o:opensuse:opensuse:13.2:::::::*

Configuration 2 [-]

cpe:2.3:a:arvidn:libtorrent:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html
http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html
http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html
http://www.openwall.com/lists/oss-security/2016/06/04/9
http://www.openwall.com/lists/oss-security/2016/06/05/1
http://www.securityfocus.com/bid/91498
https://github.com/arvidn/libtorrent/issues/780
https://github.com/arvidn/libtorrent/pull/782/files

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-06-30T17:00:00

Updated: 2024-08-06T01:00:57.563Z

Reserved: 2016-06-04T00:00:00

Link: CVE-2016-5301

Vulnrichment

No data.

NVD

Status : Modified

Published: 2016-06-30T17:59:09.987

Modified: 2024-11-21T02:54:01.957

Link: CVE-2016-5301

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-06-03T00:00:00", "descriptions": [{"lang": "en", "value": "The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-28T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20160604 Re: Libtorrent http_parser.cpp denial of service", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/06/05/1"}, {"name": "openSUSE-SU-2016:1683", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html"}, {"name": "91498", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/91498"}, {"name": "[oss-security] 20160604 Libtorrent http_parser.cpp denial of service", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/06/04/9"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/arvidn/libtorrent/pull/782/files"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/arvidn/libtorrent/issues/780"}, {"name": "openSUSE-SU-2016:2283", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html"}, {"name": "openSUSE-SU-2016:1635", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-5301", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20160604 Re: Libtorrent http_parser.cpp denial of service", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/06/05/1"}, {"name": "openSUSE-SU-2016:1683", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html"}, {"name": "91498", "refsource": "BID", "url": "http://www.securityfocus.com/bid/91498"}, {"name": "[oss-security] 20160604 Libtorrent http_parser.cpp denial of service", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/06/04/9"}, {"name": "https://github.com/arvidn/libtorrent/pull/782/files", "refsource": "CONFIRM", "url": "https://github.com/arvidn/libtorrent/pull/782/files"}, {"name": "https://github.com/arvidn/libtorrent/issues/780", "refsource": "CONFIRM", "url": "https://github.com/arvidn/libtorrent/issues/780"}, {"name": "openSUSE-SU-2016:2283", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html"}, {"name": "openSUSE-SU-2016:1635", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T01:00:57.563Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20160604 Re: Libtorrent http_parser.cpp denial of service", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2016/06/05/1"}, {"name": "openSUSE-SU-2016:1683", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html"}, {"name": "91498", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/91498"}, {"name": "[oss-security] 20160604 Libtorrent http_parser.cpp denial of service", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2016/06/04/9"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/arvidn/libtorrent/pull/782/files"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/arvidn/libtorrent/issues/780"}, {"name": "openSUSE-SU-2016:2283", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html"}, {"name": "openSUSE-SU-2016:1635", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-5301", "datePublished": "2016-06-30T17:00:00", "dateReserved": "2016-06-04T00:00:00", "dateUpdated": "2024-08-06T01:00:57.563Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*", "matchCriteriaId": "4863BE36-D16A-4D75-90D9-FD76DB5B48B7", "vulnerable": true}, {"criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:arvidn:libtorrent:*:*:*:*:*:*:*:*", "matchCriteriaId": "71BA35DB-06B4-4180-AA45-F1433CB54953", "versionEndIncluding": "1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast."}, {"lang": "es", "value": "La funci\u00f3n parse_chunk_header en libtorrent en versiones anteriores a 1.1.1 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de (1) una respuesta HTTP o posiblemente (2) una difusi\u00f3n UPnP manipuladas."}], "id": "CVE-2016-5301", "lastModified": "2024-11-21T02:54:01.957", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-06-30T17:59:09.987", "references": [{"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2016/06/04/9"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2016/06/05/1"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/91498"}, {"source": "cve@mitre.org", "url": "https://github.com/arvidn/libtorrent/issues/780"}, {"source": "cve@mitre.org", "url": "https://github.com/arvidn/libtorrent/pull/782/files"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00079.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-updates/2016-06/msg00103.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00043.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2016/06/04/9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2016/06/05/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/91498"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/arvidn/libtorrent/issues/780"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/arvidn/libtorrent/pull/782/files"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}