Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-16879

Опубликовано: 22 нояб. 2017
Источник: ubuntu
Приоритет: negligible
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8

Описание

Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

6.1-1ubuntu1.18.04
cosmic

not-affected

6.1-1ubuntu1.18.04
devel

not-affected

6.1-1ubuntu1.18.04
disco

not-affected

6.1-1ubuntu1.18.04
eoan

not-affected

6.1-1ubuntu1.18.04
esm-infra-legacy/trusty

released

5.9+20140118-1ubuntu1+esm2
esm-infra/bionic

not-affected

6.1-1ubuntu1.18.04
esm-infra/focal

not-affected

6.1-1ubuntu1.18.04
esm-infra/xenial

released

6.0+20160213-1ubuntu1+esm2

Показывать по

Ссылки на источники

EPSS

Процентиль: 63%
0.00437
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-16879

CVSS3: 2.5
redhat
около 8 лет назад

Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic.

nvd логотип

CVE-2017-16879

CVSS3: 7.8
nvd
около 8 лет назад

Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic.

debian логотип

CVE-2017-16879

CVSS3: 7.8
debian
около 8 лет назад

Stack-based buffer overflow in the _nc_write_entry function in tinfo/w ...

github логотип

GHSA-r8vx-h3vx-6wh2

CVSS3: 7.8
github
больше 3 лет назад

Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic.

suse-cvrf логотип

SUSE-SU-2017:3183-1

suse-cvrf
около 8 лет назад

Security update for ncurses

EPSS

Процентиль: 63%
0.00437
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3