CVE-2017-3141
Windows service and uninstall paths are not quoted when BIND is installed
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, 9.10.5-S1.
El instalador de BIND en Windows emplea una ruta de servicio sin entrecomillar que puede permitir que un usuario local logre escalar privilegios si los permisos del sistema host de archivos lo permiten. Afecta a BIND desde la versión 9.2.6-P2 hasta la 9.2.9, desde la 9.3.2-P1 hasta la 9.3.6, desde la 9.4.0 hasta la 9.8.8, desde la 9.9.0 hasta la 9.9.10, desde la 9.10.0 hasta la 9.10.5, desde la 9.11.0 hasta la 9.11.1, desde la 9.9.3-S1 hasta la 9.9.10-S1 y en la versión 9.10.5-S1.
Multiple vulnerabilities have been found in BIND, the worst of which allows remote attackers to cause a Denial of Service condition. Versions less than 9.11.1_p1 are affected.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-12-02 CVE Reserved
- 2017-06-05 CVE Published
- 2017-06-05 First Exploit
- 2024-09-16 CVE Updated
- 2025-01-31 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-428: Unquoted Search Path or Element
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/99089 | Third Party Advisory | |
| http://www.securitytracker.com/id/1038693 | Third Party Advisory | |
| https://security.netapp.com/advisory/ntap-20180926-0001 | Third Party Advisory |
|
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/142800 | 2017-06-05 | |
| https://www.exploit-db.com/exploits/42121 | 2024-09-16 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kb.isc.org/docs/aa-01496 | 2019-10-09 | |
| https://security.gentoo.org/glsa/201708-01 | 2019-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.2.6 <= 9.2.9 Search vendor "Isc" for product "Bind" and version " >= 9.2.6 <= 9.2.9" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.3.2 <= 9.3.6 Search vendor "Isc" for product "Bind" and version " >= 9.3.2 <= 9.3.6" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.4.0 <= 9.8.8 Search vendor "Isc" for product "Bind" and version " >= 9.4.0 <= 9.8.8" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.9.0 <= 9.9.10 Search vendor "Isc" for product "Bind" and version " >= 9.9.0 <= 9.9.10" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.10.0 <= 9.10.5 Search vendor "Isc" for product "Bind" and version " >= 9.10.0 <= 9.10.5" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.11.0 <= 9.11.1 Search vendor "Isc" for product "Bind" and version " >= 9.11.0 <= 9.11.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.2.6 Search vendor "Isc" for product "Bind" and version "9.2.6" | p2 |
Affected
| ||||||
| Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.3.2 Search vendor "Isc" for product "Bind" and version "9.3.2" | p1 |
Affected
| ||||||