CVE-2017-9761

The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
References
Link Resource
https://github.com/radare/radare2/issues/7727 Issue Tracking Patch Third Party Advisory
https://github.com/radare/radare2/commit/00e8f205475332d7842d0f0d1481eeab4e83017c Issue Tracking Patch Third Party Advisory
http://www.securityfocus.com/bid/99138 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:radare:radare2:1.5.0:*:*:*:*:*:*:*

Information

Published : 2017-06-19 09:29

Updated : 2017-06-27 07:49


NVD link : CVE-2017-9761

Mitre link : CVE-2017-9761


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

radare

  • radare2