CVE-2017-3253
OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS v3.0 Base Score 7.5 (Availability impacts).
Vulnerabilidad en el componente Java SE, Java SE Embedded, JRockit de Oracle Java SE (Subcomponente: 2D). Versiones compatibles que están afectadas son Java SE: 6u131, 7u121 y 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Vulnerabilidad fácilmente explotable permite a atacantes no autenticados con acceso a la red a través de múltiples protocolos comprometer Java SE, Java SE Embedded, JRockit. Ataques exitosos de esta vulnerabilidad pueden resultar en a capacidad no autorizada para causar un bloqueo o frecuencia de bloqueo repetido (DOS completo) de Java SE, Java SE Embedded, JRockit. Nota: Aplica a la implementación de cliente y servidor de Java. Esta vulnerabilidad puede ser explotada a través de aplicaciones Java Web Start y applets Java aislados. También puede ser explotada suministrando datos de APIs en el componente especificado sin utilizar aplicaciones Java Web Start o applets Java aislados, como por ejemplo mediante un servicio web. CVSS v3.0 Base Score 7.5 (Impactos de Disponibilidad).
It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory.
CVSS Scores
SSVC
- Decision:Attend
Timeline
- 2016-12-06 CVE Reserved
- 2017-01-20 CVE Published
- 2024-10-09 CVE Updated
- 2024-11-19 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-770: Allocation of Resources Without Limits or Throttling
CAPEC
References (19)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/95498 | Third Party Advisory | |
| http://www.securitytracker.com/id/1037637 | Vdb Entry | |
| https://security.netapp.com/advisory/ntap-20170119-0001 | X_refsource_confirm |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html | 2018-01-05 |
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2017-0175.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0176.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0177.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0180.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0263.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0269.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0336.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0337.html | 2018-01-05 | |
| http://rhn.redhat.com/errata/RHSA-2017-0338.html | 2018-01-05 | |
| http://www.debian.org/security/2017/dsa-3782 | 2018-01-05 | |
| https://access.redhat.com/errata/RHSA-2017:1216 | 2018-01-05 | |
| https://security.gentoo.org/glsa/201701-65 | 2018-01-05 | |
| https://security.gentoo.org/glsa/201707-01 | 2018-01-05 | |
| https://access.redhat.com/security/cve/CVE-2017-3253 | 2017-05-09 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1413583 | 2017-05-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | 1.6 Search vendor "Oracle" for product "Jdk" and version "1.6" | update_131 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | 1.7 Search vendor "Oracle" for product "Jdk" and version "1.7" | update_121 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | 1.8 Search vendor "Oracle" for product "Jdk" and version "1.8" | update_111 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jdk Search vendor "Oracle" for product "Jdk" | 1.8 Search vendor "Oracle" for product "Jdk" and version "1.8" | update_112 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | 1.6 Search vendor "Oracle" for product "Jre" and version "1.6" | update_131 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | 1.7 Search vendor "Oracle" for product "Jre" and version "1.7" | update_121 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | 1.8 Search vendor "Oracle" for product "Jre" and version "1.8" | update_111 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jre Search vendor "Oracle" for product "Jre" | 1.8 Search vendor "Oracle" for product "Jre" and version "1.8" | update_112 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Jrockit Search vendor "Oracle" for product "Jrockit" | r28.3.12 Search vendor "Oracle" for product "Jrockit" and version "r28.3.12" | - |
Affected
| ||||||