CVE-2016-5080

Name of the Vulnerable Software and Affected Versions ASN1C for C/C++ versions prior to 7.0.2

Description The issue is related to an integer overflow in the rtxMemHeapAlloc function within the asn1rt a.lib library of ASN1C for C/C++. This can be exploited by context-dependent attackers using crafted ASN.1 data to potentially execute arbitrary code or cause a denial of service through a heap-based buffer overflow on systems running applications compiled by ASN1C.

Recommendations For versions prior to 7.0.2, update to version 7.0.2 or later to resolve the issue.