Out of Bounds Heap Write Vulnerability in GNU Binutils

Out of Bounds Heap Write Vulnerability in GNU Binutils

CVE-2017-12450 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The alpha_vms_object_p function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file.

Learn more about our Web Application Penetration Testing UK.