Vulnerabilities > CVE-2016-5027 - NULL Pointer Dereference vulnerability in Libdwarf Project Libdwarf 20160115
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Nessus
NASL family | FreeBSD Local Security Checks |
NASL id | FREEBSD_PKG_83041CA7D69011E6917114DAE9D210B8.NASL |
description | Christian Rebischke reports : libdwarf is vulnerable to multiple issues including arbitrary code execution, information disclosure and denial of service. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 96368 |
published | 2017-01-10 |
reporter | This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/96368 |
title | FreeBSD : libdwarf -- multiple vulnerabilities (83041ca7-d690-11e6-9171-14dae9d210b8) |
References
- http://www.openwall.com/lists/oss-security/2016/05/24/1
- http://www.openwall.com/lists/oss-security/2016/05/24/1
- http://www.openwall.com/lists/oss-security/2016/05/25/1
- http://www.openwall.com/lists/oss-security/2016/05/25/1
- https://bugzilla.redhat.com/show_bug.cgi?id=1330237
- https://bugzilla.redhat.com/show_bug.cgi?id=1330237