CVE-2015-7547 | AttackerKB

Description

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing “dual A/AAAA DNS queries” and the libnss_dns.so.2 NSS module.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

Vendors

canonical,
debian,
f5,
gnu,
hp,
opensuse,
oracle,
redhat,
sophos,
suse

Products

References

Canonical

CVE-2015-7547 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7547)

BID-83265 (http://www.securityfocus.com/bid/83265)

Advisory

SECTRACK-1035020 (http://www.securitytracker.com/id/1035020)

HPSBGN03582 (http://marc.info?l=bugtraq&m=146161017210491&w=2)

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html

http://rhn.redhat.com/errata/RHSA-2016-0175.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672

https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released

https://sourceware.org/bugzilla/show_bug.cgi?id=18665

HPSBGN03551 (http://marc.info?l=bugtraq&m=145857691004892&w=2)

http://rhn.redhat.com/errata/RHSA-2016-0225.html

FEDORA-2016-0f9e9a34ce (http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html)

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161

DSA-3481 (http://www.debian.org/security/2016/dsa-3481)

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html

USN-2900-1 (http://ubuntu.com/usn/usn-2900-1)

http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917

http://rhn.redhat.com/errata/RHSA-2016-0277.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

https://security.netapp.com/advisory/ntap-20160217-0002

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html

https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released

https://support.lenovo.com/us/en/product_security/len_5450

http://www.vmware.com/security/advisories/VMSA-2016-0002.html

HPSBGN03549 (http://marc.info?l=bugtraq&m=145672440608228&w=2)

http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

GLSA-201602-02 (https://security.gentoo.org/glsa/201602-02)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937

HPSBGN03547 (http://marc.info?l=bugtraq&m=145596041017029&w=2)

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html

EXPLOIT-DB-40339 (https://www.exploit-db.com/exploits/40339)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877

https://bto.bluecoat.com/security-advisory/sa114

[libc-alpha] 20160216 [PATCH] CVE-2015-7547 --- glibc getaddrinfo() stack-based buffer overflow (https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html)

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html

https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=1293532

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479

https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html

http://rhn.redhat.com/errata/RHSA-2016-0176.html

FEDORA-2016-0480defc94 (http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html)

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404

DSA-3480 (http://www.debian.org/security/2016/dsa-3480)

EXPLOIT-DB-39454 (https://www.exploit-db.com/exploits/39454)

http://support.citrix.com/article/CTX206991

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en

VU#457759 (https://www.kb.cert.org/vuls/id/457759)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958

https://access.redhat.com/articles/2161461

https://kc.mcafee.com/corporate/index?page=content&id=SB10150

HPSBGN03442 (http://marc.info?l=bugtraq&m=145690841819314&w=2)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516

20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X (http://seclists.org/fulldisclosure/2019/Sep/7)

20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X (https://seclists.org/bugtraq/2019/Sep/7)

HPSBGN03582 (http://marc.info/?l=bugtraq&m=146161017210491&w=2)

https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/

HPSBGN03551 (http://marc.info/?l=bugtraq&m=145857691004892&w=2)

https://security.netapp.com/advisory/ntap-20160217-0002/

https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/

HPSBGN03549 (http://marc.info/?l=bugtraq&m=145672440608228&w=2)

HPSBGN03547 (http://marc.info/?l=bugtraq&m=145596041017029&w=2)

EXPLOIT-DB-40339 (https://www.exploit-db.com/exploits/40339/)

EXPLOIT-DB-39454 (https://www.exploit-db.com/exploits/39454/)

HPSBGN03442 (http://marc.info/?l=bugtraq&m=145690841819314&w=2)

20210901 SEC Consult SA-20210901-0 :: Multiple vulnerabilities in MOXA devices (http://seclists.org/fulldisclosure/2021/Sep/0)

20220617 SEC Consult SA-20220615-0 :: Hardcoded Backdoor User and Outdated Software Components in Nexans FTTO GigaSwitch series (http://seclists.org/fulldisclosure/2022/Jun/36)

Miscellaneous

https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html

https://www.tenable.com/security/research/tra-2017-08

http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html

https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01

http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html

http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html

https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17

http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html

https://access.redhat.com/errata/RHSA-2016:0176

https://access.redhat.com/errata/RHSA-2016:0175

https://access.redhat.com/errata/RHSA-2016:0225

https://access.redhat.com/errata/RHSA-2016:0277

https://access.redhat.com/security/cve/CVE-2015-7547

Rapid7

Technical Analysis