iucode-tool CVE-2017-0357 Heap Buffer Overflow Vulnerability

iucode-tool is prone to a heap-based buffer overflow vulnerability because it fails to properly bounds check user-supplied data before copying it into an insufficiently sized buffer.

Attackers can exploit this issue to execute arbitrary code within the context of affected application or cause denial-of-service condition.

iucode-tool 1.4 through 2.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus