header-logo
Suggest Exploit
vendor:
binutils
by:
Unknown
7.5
CVSS
HIGH
Buffer Overflow
Buffer Overflow
CWE
Product Name: binutils
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: a:gnu:binutils
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Buffer Overflow Vulnerability in GNU ‘binutils’

The GNU 'binutils' is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Remote attackers may crash the 'strings' utility, potentially making analysis of malicious binaries more difficult. Attackers may also execute arbitrary machine code in the context of applications that use the affected library.

Mitigation:

Apply the latest security patches provided by the vendor. Avoid processing untrusted input.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/17950/info

GNU 'binutils' is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Remote attackers may crash the 'strings' utility, potentially making analysis of malicious binaries more difficult. Attackers may also execute arbitrary machine code in the context of applications that use the affected library.

%253Cc%253Cc%253Cc%253Cc%253Cc%253Cc%253Cc