PT-2019-11446 · Unknown · Ulaunchelf
Prodigysml
·
Publicado
2019-07-15
·
Atualizado
2021-07-21
·
CVE-2019-1010039
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
uLaunchELF versions prior to commit 170827a
Description:
The issue is related to a buffer overflow in the loader program, specifically in the loader.c component. This occurs because the loader program overly trusts the arguments provided via the command line. The impact of this issue is possible code execution and denial of service.
Recommendations:
For versions prior to commit 170827a, update to a version that includes the fix for the buffer overflow issue in the loader program. As a temporary workaround, consider restricting the use of command line arguments to minimize the risk of exploitation.
Correção
Memory Corruption
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ulaunchelf