Unknown · Radare2-Extras · CVE-2020-24133
Name of the Vulnerable Software and Affected Versions:
Radare2-extras versions before commit e74a93c
Description:
A heap buffer overflow vulnerability in the `r asm swf disass` function allows attackers to execute arbitrary code or carry out denial of service (DOS) attacks.
Recommendations:
For versions before commit e74a93c, update to a version that includes the fix for the heap buffer overflow vulnerability in the `r asm swf disass` function. As a temporary workaround, consider disabling the `r asm swf disass` function until a patch is available.