Vulnerabilities > CVE-2016-5027 - NULL Pointer Dereference vulnerability in Libdwarf Project Libdwarf 20160115

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
libdwarf-project
CWE-476
nessus

Summary

dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file.

Vulnerable Configurations

Part Description Count
Application
Libdwarf_Project
1

Common Weakness Enumeration (CWE)

Nessus

NASL familyFreeBSD Local Security Checks
NASL idFREEBSD_PKG_83041CA7D69011E6917114DAE9D210B8.NASL
descriptionChristian Rebischke reports : libdwarf is vulnerable to multiple issues including arbitrary code execution, information disclosure and denial of service.
last seen2020-06-01
modified2020-06-02
plugin id96368
published2017-01-10
reporterThis script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/96368
titleFreeBSD : libdwarf -- multiple vulnerabilities (83041ca7-d690-11e6-9171-14dae9d210b8)