PT-2018-4957 · Bsd+1 · Bsd Libc+1

Published

2016-12-06

Updated

2019-10-09

CVE-2016-6559

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions BSD libc library (affected versions not specified)

Description The issue is related to improper bounds checking of the obuf variable in the link ntoa() function, which may allow an attacker to read or write from memory. The impact and severity depend on the method of exploit and how the library is used by applications. According to analysis, it is unlikely that applications exist that utilize link ntoa() in an exploitable manner, and there is no known proof of concept.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

CVE-2016-6559

FREEBSD-SA-16_37

Affected Products

Bsd Libc

Freebsd

PT-2018-4957 · Bsd+1 · Bsd Libc+1

CVE-2016-6559

Weakness Enumeration

Related Identifiers

Affected Products

References · 6