Heap-Based Buffer Over-Read Vulnerability in md4c 0.2.5: md_is_link_reference_definition_helper

Heap-Based Buffer Over-Read Vulnerability in md4c 0.2.5: md_is_link_reference_definition_helper

CVE-2018-11547 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

md_is_link_reference_definition_helper in md4c 0.2.5 has a heap-based buffer over-read because md_is_link_label mishandles loop termination.

Learn more about our Web Application Penetration Testing UK.