CVE-2017-11729

Name of the Vulnerable Software and Affected Versions Ming version 0.4.8

Description A heap-based buffer over-read was found in the function OpCode, which is called from decompileINCR DECR line 1440 in util/decompile.c. This issue allows attackers to cause a denial of service via a crafted file.

Recommendations For Ming version 0.4.8, consider applying a patch or fix that addresses the heap-based buffer over-read in the OpCode function to prevent denial of service attacks via crafted files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.