Stack-based Buffer Overflow in xtimor NMEA Library (nmealib) 0.5.3

Stack-based Buffer Overflow in xtimor NMEA Library (nmealib) 0.5.3

CVE-2018-17174 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A stack-based buffer overflow was discovered in the xtimor NMEA library (aka nmealib) 0.5.3. nmea_parse() in parser.c allows an attacker to trigger denial of service (even arbitrary code execution in a certain context) in a product using this library via malformed data.

Learn more about our Web Application Penetration Testing UK.