PT-2023-2369 · Finixbit · Elf-Parser

10Cksyiqiyinhangzhoutechnology

Publicado

2023-03-02

Atualizado

2024-05-17

CVE-2023-1157

CVSS v2.0

1.7

Baixa

Vetor

AV:L/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions finixbit elf-parser (affected versions not specified)

Description The issue is related to insufficient input validation in the elf parser::Elf parser::get segments function of the elf parser.cpp component in the elf-parser program. This can lead to denial of service when exploited. Local access is required for an attack. The exploit has been publicly disclosed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-404

Identificadores relacionados

BDU:2023-02144

CVE-2023-1157

Produtos afetados

Elf-Parser

PT-2023-2369 · Finixbit · Elf-Parser

CVE-2023-1157

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7