CVE-2017-11328
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-11328
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-11328.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-11328
- Downstream
- Published
- 2017-07-17T13:18:20Z
- Modified
- 2025-09-19T08:45:34.436475Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Heap buffer overflow in the yrobjectarraysetitem() function in object.c in YARA 3.x allows a denial-of-service attack by scanning a crafted .NET file.
- References
Affected packages
Git / github.com/virustotal/yara
Affected ranges
- Type
- GIT
- Repo
- https://github.com/virustotal/yara
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2017-11328-34964def",
"signature_type": "Function",
"target": {
"file": "libyara/object.c",
"function": "yr_object_array_set_item"
},
"digest": {
"function_hash": "324705777057782691895313934710125693065",
"length": 988.0
},
"source": "https://github.com/virustotal/yara/commit/4a342f01e5439b9bb901aff1c6c23c536baeeb3f",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2017-11328-40ac8f76",
"signature_type": "Function",
"target": {
"file": "tests/test-rules.c",
"function": "test_modules"
},
"digest": {
"function_hash": "45076557500668251299605077535754881191",
"length": 3315.0
},
"source": "https://github.com/virustotal/yara/commit/4a342f01e5439b9bb901aff1c6c23c536baeeb3f",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2017-11328-b368e98f",
"signature_type": "Line",
"target": {
"file": "libyara/modules/tests.c"
},
"digest": {
"line_hashes": [
"114913046958087037718737152000800856168",
"303402493744293866833559025193350100384",
"284804116677005452746888165511938534822",
"281920856999173747992864627079310810405"
],
"threshold": 0.9
},
"source": "https://github.com/virustotal/yara/commit/4a342f01e5439b9bb901aff1c6c23c536baeeb3f",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2017-11328-d4f727c1",
"signature_type": "Line",
"target": {
"file": "libyara/object.c"
},
"digest": {
"line_hashes": [
"51759771513933441557698857444080657358",
"147414800417924708319395375809106822783",
"267171099067606627017360805785063548730",
"334385867148318352307733500909017573396",
"160545568683887489416728219391902486873",
"244245833980470298784494367257278772235",
"236410404055015517282616548381445990746",
"123748021024583038745410962062165420429"
],
"threshold": 0.9
},
"source": "https://github.com/virustotal/yara/commit/4a342f01e5439b9bb901aff1c6c23c536baeeb3f",
"signature_version": "v1",
"deprecated": false
},
{
"id": "CVE-2017-11328-eabc765f",
"signature_type": "Function",
"target": {
"file": "libyara/modules/tests.c",
"function": "module_load"
},
"digest": {
"function_hash": "35304141080675584566892846950097265725",
"length": 934.0
},
"source": "https://github.com/virustotal/yara/commit/4a342f01e5439b9bb901aff1c6c23c536baeeb3f",
"signature_version": "v1",
"deprecated": false
}
]
}