Integer-Overflow Vulnerability in print_gnu_property_note Function in GNU Binutils 2.29.1

Integer-Overflow Vulnerability in print_gnu_property_note Function in GNU Binutils 2.29.1

CVE-2017-16830 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The print_gnu_property_note function in readelf.c in GNU Binutils 2.29.1 does not have integer-overflow protection on 32-bit platforms, which allows remote attackers to cause a denial of service (segmentation violation and application crash) or possibly have unspecified other impact via a crafted ELF file.

Learn more about our Web Application Penetration Testing UK.