Integer Overflow and Denial of Service Vulnerability in GNU Binutils 2.29

Integer Overflow and Denial of Service Vulnerability in GNU Binutils 2.29

CVE-2017-14333 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vn_next, during "readelf -a" execution.

Learn more about our Web Application Penetration Testing UK.