CVE-2017-9334 in CHICKEN Schemeinfo

Summary

An incorrect "pair?" check in the Scheme "length" procedure results in an unsafe pointer dereference in all CHICKEN Scheme versions prior to 4.13, which allows an attacker to cause a denial of service by passing an improper list to an application that calls "length" on it.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

05/31/2017

Disclosure

06/01/2017

Moderation

VulDB entry created

Entries

VDB-101882 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

6.4

EPSS

0.00436

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9334
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9334
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9334/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!