CVE-2017-20005 — Vulnetix

CVE-2017-20005 PUBLISHED

NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex module.

EPSS 3.25% · 87.4th percentile

Risk Scores

EPSS Score

3.25%

87.4th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:Pro:14.04:LTS	nginx	1.4.1-3ubuntu1, 1.4.3-2ubuntu1, 1.4.4-1ubuntu1
Ubuntu:Pro:16.04:LTS	nginx	0, 1.9.3-1ubuntu1, 1.9.6-2ubuntu1

Exploit Intelligence

https://trac.nginx.org/nginx/ticket/1368 (nist-nvd)
40768 (circl)
20161121 Nginx (Debian-based distros) - Root Privilege Escalation (CVE-2016-1247) (circl)
DSA-3701 (circl)
https://www.youtube.com/watch?v=aTswN1k1fQs (circl)
93903 (circl)
https://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html (circl)
USN-3114-1 (circl)
20170113 Nginx (Debian-based + Gentoo distros) - Root Privilege Escalation [CVE-2016-1247 UPDATE] (circl)
GLSA-201701-22 (circl)

…and 6 more exploits

Timeline

Jun 6, 2021 CVE Published
Jun 8, 2021 EPSS Score
Jun 13, 2021 EPSS Score
Oct 9, 2021 EPSS Score
Dec 9, 2021 EPSS Score
Apr 9, 2022 EPSS Score
Jun 9, 2022 EPSS Score
Aug 10, 2022 EPSS Score
Dec 10, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Jun 11, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2017-20005 third-party-advisory
https://github.com/nginx/nginx/commit/0206ebe76f748bb39d9de4dd4b3fce777fdfdccf third-party-advisory
https://github.com/nginx/nginx/commit/b900cc28fcbb4cf5a32ab62f80b59292e1c85b4b third-party-advisory
https://trac.nginx.org/nginx/ticket/1368 third-party-advisory
http://nginx.org/en/CHANGES third-party-advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00009.html third-party-advisory
https://ubuntu.com/security/notices/USN-5109-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2017-20005 third-party-advisory

Open in Interactive Console →