Vulnerabilities > CVE-2021-32298 - Out-of-bounds Write vulnerability in Libiff Project Libiff

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

libiff-project

CWE-787

NVD

Published: 2021-09-20

Updated: 2021-10-02

Summary

An issue was discovered in libiff through 20190123. A global-buffer-overflow exists in the function IFF_errorId located in error.c. It allows an attacker to cause code Execution.

Vulnerable Configurations

Part	Description	Count
Application	Libiff_Project Libiff Project Libiff *	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/svanderburg/libiff/issues/10