PT-2024-4335 · Unixodbc+5 · Unixodbc+5

Fweimer-Rh

Published

2024-01-21

Updated

2026-01-28

CVE-2024-1013

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions unixODBC (affected versions not specified)

Description The issue is related to an out-of-bounds stack write flaw in unixODBC on 64-bit architectures. This flaw can be exploited by a remote attacker to gain access to confidential data and cause a denial of service. The vulnerability may go unnoticed on little-endian architectures but can cause issues on big-endian architectures. An attacker could use this issue to execute arbitrary code or cause a crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-823

Related Identifiers

AZL-36896

AZL-36904

BDU:2024-04824

BIT-UNIXODBC-2024-1013

CVE-2024-1013

ECHO-B798-34BB-79D9

MGASA-2024-0106

OESA-2024-1327

OESA-2024-1370

OESA-2024-1371

OESA-2024-1372

OESA-2024-1373

OESA-2024-1374

OESA-2024-2332

SUSE-SU-2024:2978-1

SUSE-SU-2024_2978-1

USN-6715-1

USN-6715-2

Affected Products

Debian

Linuxmint

Red Os

Suse

Ubuntu

Unixodbc

PT-2024-4335 · Unixodbc+5 · Unixodbc+5

CVE-2024-1013

Weakness Enumeration

Related Identifiers

Affected Products

References · 47