Vulnerabilities > CVE-2018-7877 - Out-of-bounds Write vulnerability in multiple products

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

libming

debian

CWE-787

NVD

Published: 2018-03-08

Updated: 2020-08-24

Summary

There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for DOUBLE data. A Crafted input will lead to a denial of service attack.

Vulnerable Configurations

Part	Description	Count
Application	Libming Libming Libming 0.4.8	1
OS	Debian Debian Debian Linux 7.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892260
https://github.com/libming/libming/issues/110