{"api_version":"1","generated_at":"2026-06-20T19:54:55+00:00","cve":"CVE-2017-2779","urls":{"html":"https://cve.report/CVE-2017-2779","api":"https://cve.report/api/cve/CVE-2017-2779.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2017-2779","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2017-2779"},"summary":{"title":"CVE-2017-2779","description":"An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014. A specially crafted Virtual Instrument (VI) file can cause an attacker controlled looping condition resulting in an arbitrary null write. An attacker controlled VI file can be used to trigger this vulnerability and can potentially result in code execution.","state":"PUBLIC","assigner":"talos-cna@cisco.com","published_at":"2017-09-05 18:29:00","updated_at":"2022-04-19 19:15:00"},"problem_types":["CWE-787"],"metrics":[],"references":[{"url":"http://www.securityfocus.com/bid/100519","name":"100519","refsource":"BID","tags":["Third Party Advisory","VDB Entry"],"title":"National Instruments LabVIEW CVE-2017-2779 Memory Corruption Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0273","name":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0273","refsource":"MISC","tags":["Exploit","Third Party Advisory","VDB Entry"],"title":"TALOS-2017-0273 ||  Cisco Talos Intelligence Group - Comprehensive Threat Intelligence","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.ni.com/product-documentation/54099/en/","name":"http://www.ni.com/product-documentation/54099/en/","refsource":"CONFIRM","tags":["Mitigation","Vendor Advisory"],"title":"Incomplete RSRC Validation in LabVIEW - National Instruments","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://0patch.blogspot.com/2017/09/0patching-rsrc-arbitrary-null-write.html","name":"https://0patch.blogspot.com/2017/09/0patching-rsrc-arbitrary-null-write.html","refsource":"MISC","tags":["Exploit","Patch","Third Party Advisory"],"title":"0patch Blog: 0patching the RSRC Arbitrary NULL Write Vulnerability in LabVIEW (CVE-2017-2779)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2017-2779","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-2779","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2014","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2015","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2016","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2017","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2014","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2015","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2016","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"2779","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"labview","cpe6":"2017","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"talos-cna@cisco.com","DATE_PUBLIC":"2017-08-29T00:00:00","ID":"CVE-2017-2779","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"LabVIEW 2016","version":{"version_data":[{"version_value":"16.0"}]}}]},"vendor_name":"National Instruments"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014. A specially crafted Virtual Instrument (VI) file can cause an attacker controlled looping condition resulting in an arbitrary null write. An attacker controlled VI file can be used to trigger this vulnerability and can potentially result in code execution."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"remote code execution"}]}]},"references":{"reference_data":[{"name":"100519","refsource":"BID","url":"http://www.securityfocus.com/bid/100519"},{"name":"https://0patch.blogspot.com/2017/09/0patching-rsrc-arbitrary-null-write.html","refsource":"MISC","url":"https://0patch.blogspot.com/2017/09/0patching-rsrc-arbitrary-null-write.html"},{"name":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0273","refsource":"MISC","url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0273"},{"name":"http://www.ni.com/product-documentation/54099/en/","refsource":"CONFIRM","url":"http://www.ni.com/product-documentation/54099/en/"}]},"impact":{"cvss":{"baseScore":7.5,"baseSeverity":"High","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","version":"3.0"}}},"nvd":{"publishedDate":"2017-09-05 18:29:00","lastModifiedDate":"2022-04-19 19:15:00","problem_types":["CWE-787"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL","baseScore":6.8},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:ni:labview:2014:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:ni:labview:2016:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:ni:labview:2015:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:ni:labview:2017:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2017","CveId":"2779","Ordinal":"98918","Title":"CVE-2017-2779","CVE":"CVE-2017-2779","Year":"2017"},"notes":[{"CveYear":"2017","CveId":"2779","Ordinal":"1","NoteData":"An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014.  A specially crafted Virtual Instrument (VI) file can cause an attacker controlled looping condition resulting in an arbitrary null write.  An attacker controlled VI file can be used to trigger this vulnerability and can potentially result in code execution.","Type":"Description","Title":null},{"CveYear":"2017","CveId":"2779","Ordinal":"2","NoteData":"2017-09-05","Type":"Other","Title":"Published"},{"CveYear":"2017","CveId":"2779","Ordinal":"3","NoteData":"2017-09-07","Type":"Other","Title":"Modified"}]}}}