Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-4303

Опубликовано: 26 сент. 2016
Источник: ubuntu
Приоритет: medium
CVSS2: 7.5
CVSS3: 9.8

Описание

The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.

РелизСтатусПримечание
artful

not-affected

iperf3 only
bionic

not-affected

iperf3 only
cosmic

not-affected

iperf3 only
devel

not-affected

iperf3 only
disco

not-affected

iperf3 only
eoan

not-affected

iperf3 only
esm-apps/bionic

not-affected

iperf3 only
esm-apps/focal

not-affected

iperf3 only
esm-apps/jammy

not-affected

iperf3 only
esm-apps/xenial

not-affected

iperf3 only

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

3.1.3-1
cosmic

not-affected

3.1.3-1
devel

not-affected

3.1.3-1
disco

not-affected

3.1.3-1
eoan

not-affected

3.1.3-1
esm-apps/bionic

not-affected

3.1.3-1
esm-apps/focal

not-affected

3.1.3-1
esm-apps/jammy

not-affected

3.1.3-1
esm-apps/xenial

released

3.0.11-1ubuntu0.1~esm1

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2016-4303

CVSS3: 9.8
nvd
больше 9 лет назад

The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.

debian логотип

CVE-2016-4303

CVSS3: 9.8
debian
больше 9 лет назад

The parse_string function in cjson.c in the cJSON library mishandles U ...

github логотип

GHSA-86rq-gv28-jjr6

CVSS3: 9.8
github
больше 3 лет назад

The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.

7.5 High

CVSS2

9.8 Critical

CVSS3