Heap-based Buffer Overflow in rsCStrExtendBuf Function in rsyslog

Heap-based Buffer Overflow in rsCStrExtendBuf Function in rsyslog

CVE-2011-4623 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service (daemon hang) via a large file, which triggers a heap-based buffer overflow.

Learn more about our User Device Pen Test.