CVE-2015-8979 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2015-8979?

CVE-2015-8979 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-8979?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Dicom Dcmtk.

Vulnerability Description

Stack-based buffer overflow in the parsePresentationContext function in storescp in DICOM dcmtk-3.6.0 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a long string sent to TCP port 4242.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Debian	Debian Linux	8.0
Dicom	Dcmtk	<= 3.6.0

Related Weaknesses (CWE)

CWE-119

References

http://packetstormsecurity.com/files/140191/DCMTK-storescp-DICOM-storage-C-STOREExploitThird Party AdvisoryVDB Entry
http://www.debian.org/security/2016/dsa-3749Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/12/18/2Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/94951Third Party AdvisoryVDB Entry
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2016-5384.phpExploitTechnical DescriptionThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1405919Issue TrackingPatchThird Party Advisory
http://packetstormsecurity.com/files/140191/DCMTK-storescp-DICOM-storage-C-STOREExploitThird Party AdvisoryVDB Entry
http://www.debian.org/security/2016/dsa-3749Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/12/18/2Mailing ListPatchThird Party Advisory
http://www.securityfocus.com/bid/94951Third Party AdvisoryVDB Entry
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2016-5384.phpExploitTechnical DescriptionThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1405919Issue TrackingPatchThird Party Advisory

FAQ

What is CVE-2015-8979?

CVE-2015-8979 is a vulnerability with a CVSS score of 7.5 (HIGH). Stack-based buffer overflow in the parsePresentationContext function in storescp in DICOM dcmtk-3.6.0 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a long s...

How severe is CVE-2015-8979?

CVE-2015-8979 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-8979?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Dicom Dcmtk.