CVE-2018-5345

Опубликовано: 12 янв. 2018

Источник: debian

EPSS Низкий

Описание

A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gcab	fixed	0.7-7		package

Примечания

https://git.gnome.org/browse/gcab/commit/?id=bd2abee5f0a9b5cbe3a1ab1f338c4fb8f6ca797b

EPSS

Процентиль: 72%

0.00752

Низкий

Связанные уязвимости

CVE-2018-5345

CVSS3: 7.8

ubuntu

почти 8 лет назад

A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.

CVE-2018-5345

CVSS3: 5.3

redhat

почти 8 лет назад

A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.

CVE-2018-5345

CVSS3: 7.8

nvd

почти 8 лет назад

A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.

GHSA-28gw-xjhw-6cm5

CVSS3: 7.8

github

больше 3 лет назад

A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.

ELSA-2018-0350

oracle-oval

больше 7 лет назад

ELSA-2018-0350: gcab security update (IMPORTANT)

EPSS

Процентиль: 72%

0.00752

Низкий