CVE-2023-42801

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-42801
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit f57bd745b4cbed577ea654fad4701bea4d38b44c. A malicious game streaming server could exploit a buffer overflow vulnerability to crash a moonlight client. Achieving RCE is possible but unlikely, due to stack canaries in use by modern compiler toolchains. The published binaries for official clients Qt, Android, iOS/tvOS, and Embedded are built with stack canaries, but some unofficial clients may not use stack canaries. This vulnerability takes place after the pairing process, so it requires the client to be tricked into pairing to a malicious host. It is not possible to perform using a man-in-the-middle due to public key pinning that takes place during the pairing process. The bug was addressed in commit b2497a3918a6d79808d9fd0c04734786e70d5954.

7.6 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 Exploit
https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 Patch
https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c Patch
https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v Exploit Third Party Advisory
https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 Exploit
https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 Patch
https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c Patch
https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:moonlight-stream:moonlight-common-c:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:iphone_os:*:*

Configuration 3 (hide)

cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:tvos:*:*

Configuration 4 (hide)

cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:android:*:*

Configuration 5 (hide)

cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:chrome:*:*

Configuration 6 (hide)

cpe:2.3:a:moonlight-stream:moonlight_embedded:*:*:*:*:*:*:*:*

Configuration 7 (hide)

cpe:2.3:a:moonlight-stream:moonlight_xbox:*:*:*:*:*:*:*:*

Configuration 8 (hide)

cpe:2.3:a:moonlight-stream:moonlight_tv:*:*:*:*:*:*:*:*

Configuration 9 (hide)

cpe:2.3:a:moonlight-stream:moonlight_switch:*:*:*:*:*:*:*:*

Configuration 10 (hide)

cpe:2.3:a:moonlight-stream:moonlight_vita:*:*:*:*:*:*:*:*

Configuration 11 (hide)

cpe:2.3:a:moonlight-stream:moonlight_qt\/pc:*:*:*:*:*:*:*:*
History

21 Nov 2024, 08:23

Type Values Removed Values Added
References () https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 - Exploit () https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 - Exploit
References () https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 - Patch () https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 - Patch
References () https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c - Patch () https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c - Patch
References () https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v - Exploit, Third Party Advisory () https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v - Exploit, Third Party Advisory

27 Dec 2023, 19:29

Type Values Removed Values Added
References () https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 - () https://github.com/moonlight-stream/moonlight-common-c/blob/c1744de06938b5a5c8897a705be1bc6508dc7580/src/Misc.c#L82-L88 - Exploit
References () https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 - () https://github.com/moonlight-stream/moonlight-common-c/commit/b2497a3918a6d79808d9fd0c04734786e70d5954 - Patch
References () https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c - () https://github.com/moonlight-stream/moonlight-common-c/commit/f57bd745b4cbed577ea654fad4701bea4d38b44c - Patch
References () https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v - () https://github.com/moonlight-stream/moonlight-common-c/security/advisories/GHSA-f3h8-j898-5h5v - Exploit, Third Party Advisory
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.6
First Time Moonlight-stream moonlight-common-c
Moonlight-stream moonlight Xbox
Moonlight-stream moonlight Vita
Moonlight-stream moonlight Embedded
Moonlight-stream moonlight
Moonlight-stream
Moonlight-stream moonlight Tv
Moonlight-stream moonlight Switch
Moonlight-stream moonlight Qt\/pc
CPE cpe:2.3:a:moonlight-stream:moonlight_qt\/pc:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight_embedded:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight_xbox:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight_switch:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight-common-c:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight_vita:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:tvos:*:*
cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:android:*:*
cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:moonlight-stream:moonlight_tv:*:*:*:*:*:*:*:*
cpe:2.3:a:moonlight-stream:moonlight:*:*:*:*:*:chrome:*:*

14 Dec 2023, 17:17

Type Values Removed Values Added
New CVE
Information

Published : 2023-12-14 17:15

Updated : 2024-11-21 08:23

NVD link : CVE-2023-42801

Mitre link : CVE-2023-42801

CVE.ORG link : CVE-2023-42801

JSON object : View

Products Affected

moonlight-stream

  • moonlight_switch
  • moonlight
  • moonlight_embedded
  • moonlight_tv
  • moonlight_qt\/pc
  • moonlight_vita
  • moonlight-common-c
  • moonlight_xbox
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024