Описание
The UDFclient (before 0.8.8) custom strlcpy implementation has a buffer overflow. UDFclient's strlcpy is used only on systems with a C library (e.g., glibc) that lacks its own strlcpy.
Ссылки
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.8.7 (включая)
cpe:2.3:a:13thmonkey:udfclient:*:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00621
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-119
Связанные уязвимости
CVSS3: 9.8
ubuntu
почти 9 лет назад
The UDFclient (before 0.8.8) custom strlcpy implementation has a buffer overflow. UDFclient's strlcpy is used only on systems with a C library (e.g., glibc) that lacks its own strlcpy.
CVSS3: 9.8
debian
почти 9 лет назад
The UDFclient (before 0.8.8) custom strlcpy implementation has a buffe ...
CVSS3: 9.8
github
больше 3 лет назад
The UDFclient (before 0.8.8) custom strlcpy implementation has a buffer overflow. UDFclient's strlcpy is used only on systems with a C library (e.g., glibc) that lacks its own strlcpy.
EPSS
Процентиль: 70%
0.00621
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-119