Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-8379

Опубликовано: 17 фев. 2019
Источник: nvd
CVSS3: 7.8
CVSS2: 6.8
EPSS Низкий

Описание

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:advancemame:advancecomp:*:*:*:*:*:*:*:*
Версия до 2.1 (исключая)
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
Конфигурация 4

Одно из

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 48%
0.00254
Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2019-8379

CVSS3: 7.8
ubuntu
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

redhat логотип

CVE-2019-8379

CVSS3: 2.8
redhat
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

debian логотип

CVE-2019-8379

CVSS3: 7.8
debian
почти 7 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer der ...

github логотип

GHSA-422q-rpjc-cfgp

CVSS3: 7.8
github
больше 3 лет назад

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.

oracle-oval логотип

ELSA-2019-2332

oracle-oval
больше 6 лет назад

ELSA-2019-2332: advancecomp security update (LOW)

EPSS

Процентиль: 48%
0.00254
Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-476