CVE-2017-9761
- EPSS 0.23%
- Veröffentlicht 19.06.2017 16:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
CVE-2017-9762
- EPSS 0.2%
- Veröffentlicht 19.06.2017 16:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted binary file.
CVE-2017-9763
- EPSS 1.36%
- Veröffentlicht 19.06.2017 16:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The grub_ext2_read_block function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service (excessive stack use and application crash) via a crafted binary file,...
CVE-2017-9520
- EPSS 0.2%
- Veröffentlicht 08.06.2017 14:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The r_config_set function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted DEX file.
CVE-2017-7946
- EPSS 0.21%
- Veröffentlicht 18.04.2017 20:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.
CVE-2017-7854
- EPSS 0.26%
- Veröffentlicht 13.04.2017 16:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.
CVE-2017-7716
- EPSS 0.19%
- Veröffentlicht 12.04.2017 15:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.
CVE-2017-6194
- EPSS 0.16%
- Veröffentlicht 03.04.2017 05:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The relocs function in libr/bin/p/bin_bflt.c in radare2 1.2.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file.
CVE-2017-6448
- EPSS 0.25%
- Veröffentlicht 03.04.2017 05:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The dalvik_disassemble function in libr/asm/p/asm_dalvik.c in radare2 1.2.1 allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.
CVE-2017-7274
- EPSS 0.23%
- Veröffentlicht 27.03.2017 17:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.