CVE-2017-10790 in Libtasn1information

Résumé

par MITRE

The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

01/07/2017

Divulgation

01/07/2017

Modérer

accepté

Entrée

VDB-102981

CPE

prêt

CWE

CWE-476 (confirmé)

CVSS

7.5 (NVD)

EPSS

0.00394

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-10790
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-10790
CVE Details	https://www.cvedetails.com/cve/CVE-2017-10790/

◂ Précédent Aperçu Suivant ▸

Interested in the pricing of exploits?

See the underground prices here!