CVE-2017-0247 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.EncodeCore function in the System.Text.Encodings.Web package in ASP.NET Core Mvc before 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to cause a denial of service by leveraging failure to properly calculate the length of 4-byte characters in the Unicode Non-Character range.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Microsoft	Asp.Net Model View Controller	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Abstractions	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Apiexplorer	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Cors	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Dataannotations	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Formatters.Json	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Formatters.Xml	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Localization	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Razor	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Razor.Host	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Taghelpers	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Viewfeatures	1.0.0
Microsoft	Microsoft.Aspnetcore.Mvc.Webapicompatshim	1.0.0
Microsoft	System.Net.Http	4.1.1
Microsoft	System.Net.Http.Winhttphandler	4.0.1
Microsoft	System.Net.Security	4.0.0
Microsoft	System.Net.Websockets.Client	4.0.0
Microsoft	System.Text.Encodings.Web	4.0.0

Related Weaknesses (CWE)

CWE-20

References

https://github.com/aspnet/Announcements/issues/239Technical DescriptionThird Party Advisory
https://technet.microsoft.com/en-us/library/security/4021279.aspxPatchVendor Advisory
https://www.sidertia.com/Home/Community/Blog/2017/05/18/ASPNET-Core-Unicode-Non-ExploitThird Party Advisory
https://github.com/aspnet/Announcements/issues/239Technical DescriptionThird Party Advisory
https://technet.microsoft.com/en-us/library/security/4021279.aspxPatchVendor Advisory
https://www.sidertia.com/Home/Community/Blog/2017/05/18/ASPNET-Core-Unicode-Non-ExploitThird Party Advisory

FAQ

What is CVE-2017-0247?

CVE-2017-0247 is a vulnerability with a CVSS score of 7.5 (HIGH). A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.E...

How severe is CVE-2017-0247?

CVE-2017-0247 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-0247?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Asp.Net Model View Controller, Microsoft Microsoft.Aspnetcore.Mvc.Abstractions, Microsoft Microsoft.Aspnetcore.Mvc.Apiexplorer, Microsoft Microsoft.Aspnetcore.Mvc.Cors, Microsoft Microsoft.Aspnetcore.Mvc.Dataannotations.