CVE-2016-8390

Name of the Vulnerable Software and Affected Versions Hopper Disassembler version 3.11.20

Description An exploitable out of bounds write issue exists in the parsing of ELF Section Headers. A specially crafted ELF file can cause attacker-controlled pointer arithmetic, resulting in a partially controlled out of bounds write. An attacker can craft an ELF file with specific section headers to trigger this issue.

Recommendations For Hopper Disassembler version 3.11.20, consider avoiding the use of ELF files from untrusted sources until a patch is available. As a temporary workaround, restrict the parsing of ELF Section Headers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.