PT-2019-5325 · Bwa+1 · Bwa+1

Zachbthomas

Publicado

2019-03-29

Atualizado

2023-02-28

CVE-2019-10269

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions BWA versions prior to 2019-01-23

Description The issue is related to a stack-based buffer overflow in the bns restore function in bntseq.c via a long sequence name in a .alt file. This can potentially allow a remote attacker to cause a denial of service or execute arbitrary code.

Recommendations For versions prior to 2019-01-23, consider updating to a version released after 2019-01-23 to resolve the issue. As a temporary workaround, consider restricting the use of long sequence names in .alt files to minimize the risk of exploitation.

Exploit

Correção

Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-787

Identificadores relacionados

BDU:2020-02394

CVE-2019-10269

USN-4087-1

USN-4857-1

Produtos afetados

Bwa

Ubuntu

PT-2019-5325 · Bwa+1 · Bwa+1

CVE-2019-10269

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 18