Denial of Service Vulnerability in pgpdump's read_binary Function

Denial of Service Vulnerability in pgpdump's read_binary Function

CVE-2016-4021 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The read_binary function in buffer.c in pgpdump before 0.30 allows context-dependent attackers to cause a denial of service (infinite loop and CPU consumption) via crafted input, as demonstrated by the \xa3\x03 string.

Learn more about our Web Application Penetration Testing UK.