CVE-2017-2885 vulnerability in GNOME and Other Products
Published on April 24, 2018

An exploitable stack based buffer overflow vulnerability exists in the GNOME libsoup 2.58. A specially crafted HTTP request can cause a stack overflow resulting in remote code execution. An attacker can send a special HTTP request to the vulnerable server to trigger this vulnerability.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2017-2885

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-2885 are published in these products:

GNOME Libsoup

Debian Linux

Red Hat Enterprise Linux Workstation

Red Hat Enterprise Linux Server Aus

Red Hat Enterprise Linux Server Eus

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server Tus

Affected Versions

GNOME libsoup Version 2.58 is affected by CVE-2017-2885

Exploit Probability

EPSS

8.55%

Percentile

92.28%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-2885 vulnerability in GNOME and Other ProductsPublished on April 24, 2018

Products Associated with CVE-2017-2885

Affected Versions

Exploit Probability

CVE-2017-2885 vulnerability in GNOME and Other Products
Published on April 24, 2018