Vulnerability-Lookup

CNVD-2015-04974

Vulnerability from cnvd - Published: 2015-07-28

Title

Ghisler Total Commander FileInfo plugin拒绝服务漏洞

Description

Ghisler Total Commander(原Windows Commander)是瑞士Ghisler公司的一套磁盘文件管理软件，可以取代资源管理器。File Info是其中的一个文件信息插件。 Ghisler Total Commander File Info插件存在安全漏洞。远程攻击者可通过多个超大的值（COFF Archive Library文件的Archive Member Header中的‘Size’值；COFF Archive Library文件的1st Linker Member中的‘Number Of Symbols’值；Linear Executable文件的LE Header中的‘Resource Table Count’值；Linear Executable文件中的Resource Table Entry的Object字段中的值）利用该漏洞造成拒绝服务（越边界读取和应用程序崩溃）。

Severity

低

Patch Name

Ghisler Total Commander FileInfo plugin拒绝服务漏洞的补丁

Patch Description

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://totalcmd.net/plugring/fileinfo.html

Reference

http://totalcmd.net/plugring/fileinfo.html

Impacted products

Name
Ghisler Total Commander FileInfo plugin <2.22

Show details on source website

JSON

To clipboard Create KEV Entry

{
  "bids": {
    "bid": {
      "bidNumber": "75955"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-2869"
    }
  },
  "description": "Ghisler Total Commander(\u539fWindows Commander)\u662f\u745e\u58ebGhisler\u516c\u53f8\u7684\u4e00\u5957\u78c1\u76d8\u6587\u4ef6\u7ba1\u7406\u8f6f\u4ef6\uff0c\u53ef\u4ee5\u53d6\u4ee3\u8d44\u6e90\u7ba1\u7406\u5668\u3002File Info\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6587\u4ef6\u4fe1\u606f\u63d2\u4ef6\u3002\r\n\r\nGhisler Total Commander File Info\u63d2\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u591a\u4e2a\u8d85\u5927\u7684\u503c\uff08COFF Archive Library\u6587\u4ef6\u7684Archive Member Header\u4e2d\u7684\u2018Size\u2019\u503c\uff1bCOFF Archive Library\u6587\u4ef6\u76841st Linker Member\u4e2d\u7684\u2018Number Of Symbols\u2019\u503c\uff1bLinear Executable\u6587\u4ef6\u7684LE Header\u4e2d\u7684\u2018Resource Table Count\u2019\u503c\uff1bLinear Executable\u6587\u4ef6\u4e2d\u7684Resource Table Entry\u7684Object\u5b57\u6bb5\u4e2d\u7684\u503c\uff09\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u8fb9\u754c\u8bfb\u53d6\u548c\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\uff09\u3002",
  "discovererName": "Cisco Talos credits Marcin Noga",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://totalcmd.net/plugring/fileinfo.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-04974",
  "openTime": "2015-07-28",
  "patchDescription": "Ghisler Total Commander(\u539fWindows Commander)\u662f\u745e\u58ebGhisler\u516c\u53f8\u7684\u4e00\u5957\u78c1\u76d8\u6587\u4ef6\u7ba1\u7406\u8f6f\u4ef6\uff0c\u53ef\u4ee5\u53d6\u4ee3\u8d44\u6e90\u7ba1\u7406\u5668\u3002File Info\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6587\u4ef6\u4fe1\u606f\u63d2\u4ef6\u3002 \r\n\r\nGhisler Total Commander File Info\u63d2\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u591a\u4e2a\u8d85\u5927\u7684\u503c\uff08COFF Archive Library\u6587\u4ef6\u7684Archive Member Header\u4e2d\u7684\u2018Size\u2019\u503c\uff1bCOFF Archive Library\u6587\u4ef6\u76841st Linker Member\u4e2d\u7684\u2018Number Of Symbols\u2019\u503c\uff1bLinear Executable\u6587\u4ef6\u7684LE Header\u4e2d\u7684\u2018Resource Table Count\u2019\u503c\uff1bLinear Executable\u6587\u4ef6\u4e2d\u7684Resource Table Entry\u7684Object\u5b57\u6bb5\u4e2d\u7684\u503c\uff09\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u8fb9\u754c\u8bfb\u53d6\u548c\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\uff09\u3002\u76ee\u524d\uff0c\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Ghisler Total Commander FileInfo plugin\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Ghisler Total Commander FileInfo plugin \u003c2.22"
  },
  "referenceLink": "http://totalcmd.net/plugring/fileinfo.html",
  "serverity": "\u4f4e",
  "submitTime": "2015-07-23",
  "title": "Ghisler Total Commander FileInfo plugin\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2015-2869 (GCVE-0-2015-2869)

Vulnerability from cvelistv5 – Published: 2015-07-21 15:00 – Updated: 2024-08-06 05:32

Summary

The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via (1) a large Size value in the Archive Member Header of a COFF Archive Library file, (2) a large Number Of Symbols value in the 1st Linker Member of a COFF Archive Library file, (3) a large Resource Table Count value in the LE Header of a Linear Executable file, or (4) a large value in a certain Object field in a Resource Table Entry in a Linear Executable file.

Severity ?

No CVSS data available.

CWE

Assigner

certcc

References

URL

Tags

	http://blogs.cisco.com/security/talos/fileinfo-pl…	x_refsource_MISC
	http://www.securitytracker.com/id/1033004	vdb-entryx_refsource_SECTRACK
	http://www.securityfocus.com/bid/75955	vdb-entryx_refsource_BID
	http://totalcmd.net/plugring/fileinfo.html	x_refsource_MISC
	http://www.kb.cert.org/vuls/id/813631	third-party-advisoryx_refsource_CERT-VN

Show details on NVD website

JSON

To clipboard Create KEV Entry

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T05:32:19.794Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://blogs.cisco.com/security/talos/fileinfo-plugin-dos"
          },
          {
            "name": "1033004",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1033004"
          },
          {
            "name": "75955",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/75955"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://totalcmd.net/plugring/fileinfo.html"
          },
          {
            "name": "VU#813631",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/813631"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-07-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via (1) a large Size value in the Archive Member Header of a COFF Archive Library file, (2) a large Number Of Symbols value in the 1st Linker Member of a COFF Archive Library file, (3) a large Resource Table Count value in the LE Header of a Linear Executable file, or (4) a large value in a certain Object field in a Resource Table Entry in a Linear Executable file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-20T09:57:01",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://blogs.cisco.com/security/talos/fileinfo-plugin-dos"
        },
        {
          "name": "1033004",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1033004"
        },
        {
          "name": "75955",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/75955"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://totalcmd.net/plugring/fileinfo.html"
        },
        {
          "name": "VU#813631",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/813631"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2015-2869",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via (1) a large Size value in the Archive Member Header of a COFF Archive Library file, (2) a large Number Of Symbols value in the 1st Linker Member of a COFF Archive Library file, (3) a large Resource Table Count value in the LE Header of a Linear Executable file, or (4) a large value in a certain Object field in a Resource Table Entry in a Linear Executable file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://blogs.cisco.com/security/talos/fileinfo-plugin-dos",
              "refsource": "MISC",
              "url": "http://blogs.cisco.com/security/talos/fileinfo-plugin-dos"
            },
            {
              "name": "1033004",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1033004"
            },
            {
              "name": "75955",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/75955"
            },
            {
              "name": "http://totalcmd.net/plugring/fileinfo.html",
              "refsource": "MISC",
              "url": "http://totalcmd.net/plugring/fileinfo.html"
            },
            {
              "name": "VU#813631",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/813631"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2015-2869",
    "datePublished": "2015-07-21T15:00:00",
    "dateReserved": "2015-04-03T00:00:00",
    "dateUpdated": "2024-08-06T05:32:19.794Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2015-04974

CVE-2015-2869 (GCVE-0-2015-2869)

Tags

Sightings

Nomenclature