Buffer overflow vulnerabilities in heap_add_entry and relocate_dir functions in libarchive

Buffer overflow vulnerabilities in heap_add_entry and relocate_dir functions in libarchive

CVE-2011-1777 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ISO9660 image.

Learn more about our Web Application Penetration Testing UK.