Buffer Overflow Vulnerability in NASM (2.14.01rc5, 2.15) Allows for Stack Overflow and Program Crash

Buffer Overflow Vulnerability in NASM (2.14.01rc5, 2.15) Allows for Stack Overflow and Program Crash

CVE-2018-1000886 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.

Learn more about our Web Application Penetration Testing UK.