CVE-2017-5872
HIGHUnisys ClearPath MCP TCP-IP-SW DoS via TLS 1.2 Client Hello Signature Algorithms Extension
Title source: llmDescription
The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152, 58.1 before 58.142, or 59.1 before 59.172, when running a TLS 1.2 service, allows remote attackers to cause a denial of service (network connectivity disruption) via a client hello with a signature_algorithms extension above those defined in RFC 5246, which triggers a full memory dump.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=42
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/96782
Scores
CVSS v3
7.5
EPSS
0.0155
EPSS Percentile
72.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (3)
unisys/clearpath_mcp
57.1
unisys/clearpath_mcp
58.1
unisys/clearpath_mcp
59.1
Published
Mar 10, 2017
Tracked Since
Feb 18, 2026