Victor M. Alvarez - Security Researcher - Exploit Intelligence Platform

CVE-2017-8294 WRITEUP HIGH WRITEUP

YARA 3.5.0 - Denial of Service via Crafted Regex Rule in yr_re_exec

libyara/re.c in the regex component in YARA 3.5.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted rule that is mishandled in the yr_re_exec function.

CVSS 7.5

View Code

CVE-2017-8929 WRITEUP HIGH WRITEUP

YARA 3.5.0 - Use-After-Free in sized_string_cmp

The sized_string_cmp function in libyara/sizedstr.c in YARA 3.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted rule.

CVSS 7.5

View Code

CVE-2017-9304 WRITEUP HIGH WRITEUP

YARA 3.5.0 - Denial of Service via Regexp Rule Stack Consumption

libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule that is mishandled in the _yr_re_emit function.

CVSS 7.5

View Code

CVE-2017-9465 WRITEUP HIGH WRITEUP

YARA 3.6.1 - Out-of-bounds Read in yr_arena_write_data

The yr_arena_write_data function in YARA 3.6.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) or obtain sensitive information from process memory via a crafted file that is mishandled in the yr_re_fast_exec function in libyara/re.c and the _yr_scan_match_callback function in libyara/scan.c.

CVSS 7.1

View Code