Uninitialized Stack Variable Vulnerability in load_tic_series() in gnuplot 5.2.rc1

CVE-2017-9670 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact when a victim opens a specially crafted file.

Learn more about our Web Application Penetration Testing UK.