Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-8503

Опубликовано: 30 окт. 2014
Источник: redhat
CVSS2: 2.6
EPSS Низкий

Описание

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.

A stack-based buffer overflow flaw was found in the way objdump processed IHEX files. A specially crafted IHEX file could cause objdump to crash or, potentially, execute arbitrary code with the privileges of the user running objdump.

Отчет

Red Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Developer Toolset 2.1devtoolset-2-binutilsWill not fix
Red Hat Enterprise Linux 5binutilsWill not fix
Red Hat Enterprise Linux 5binutils220Will not fix
Red Hat Enterprise Linux 6binutilsWill not fix
Red Hat Enterprise Linux 6mingw32-binutilsWill not fix
Red Hat Enterprise Linux 7binutilsFixedRHSA-2015:207919.11.2015

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-121
https://bugzilla.redhat.com/show_bug.cgi?id=1162607binutils: stack overflow in objdump when parsing specially crafted ihex file

EPSS

Процентиль: 90%
0.057
Низкий

2.6 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2014-8503

ubuntu
больше 10 лет назад

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.

nvd логотип

CVE-2014-8503

nvd
больше 10 лет назад

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.

debian логотип

CVE-2014-8503

debian
больше 10 лет назад

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in ...

github логотип

GHSA-wm8r-9c6v-49f4

github
больше 3 лет назад

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.

oracle-oval логотип

ELSA-2015-2079

oracle-oval
почти 10 лет назад

ELSA-2015-2079: binutils security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 90%
0.057
Низкий

2.6 Low

CVSS2