jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function _jsi_evalcode from jsiEval.c that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code.
References
Link | Resource |
---|---|
https://jsish.org/fossil/jsi/tktview/c253f6d80c9018d841e857b69e7ad6436ed95cb9 | Patch Vendor Advisory |
Configurations
Information
Published : 2018-09-06 10:29
Updated : 2018-10-25 07:49
NVD link : CVE-2018-1000663
Mitre link : CVE-2018-1000663
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
jsish
- jsish