Out-of-bounds array access vulnerability in VIQR module in FreeBSD and NetBSD

Out-of-bounds array access vulnerability in VIQR module in FreeBSD and NetBSD

CVE-2014-5384 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different vulnerability types.

Learn more about our Web Application Penetration Testing UK.