Описание
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the js_pushstring function in jsrun.c when parsing a specially crafted JS file.
Ссылки
- Third Party AdvisoryVDB Entry
- Issue Tracking
- Third Party AdvisoryVDB Entry
- Issue Tracking
Уязвимые конфигурации
Конфигурация 1Версия до 2017-01-24 (исключая)
cpe:2.3:a:artifex:mujs:*:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00287
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 7.8
debian
около 9 лет назад
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a ...
CVSS3: 7.8
github
больше 3 лет назад
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the js_pushstring function in jsrun.c when parsing a specially crafted JS file.
EPSS
Процентиль: 52%
0.00287
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-190