CVE-2015-7547

EPSS 89.6%

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.

Affected products

n/a · n/a

public PoCs found — 19

githubgithub.com/fjserna/CVE-2015-7547★ 544 githubgithub.com/eSentire/cve-2015-7547-public★ 10 githubgithub.com/jgajek/cve-2015-7547★ 8 githubgithub.com/cakuzo/CVE-2015-7547★ 5 githubgithub.com/t0r0t0r0/CVE-2015-7547★ 1 githubgithub.com/rexifiles/rex-sec-glibc★ 0 githubgithub.com/babykillerblack/CVE-2015-7547★ 0 githubgithub.com/bluebluelan/CVE-2015-7547-proj-master★ 0 githubgithub.com/miracle03/CVE-2015-7547-master★ 0 githubgithub.com/Stick-U235/CVE-2015-7547-Research★ 0 githubgithub.com/Amilaperera12/Glibc-Vulnerability-Exploit-CVE-2015-7547★ 0 exploitdbwww.exploit-db.com/exploits/40339unverified cve_referencepacketstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.htmlunverified cve_referencepacketstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlunverified cve_referencepacketstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlunverified cve_referencewww.exploit-db.com/exploits/39454/unverified cve_referencewww.exploit-db.com/exploits/40339/unverified exploitdbwww.exploit-db.com/exploits/39454unverified cve_referencepacketstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.htmlunverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html http://marc.info/?l=bugtraq&m=145596041017029&w=2 http://marc.info/?l=bugtraq&m=145672440608228&w=2