Heap-based Buffer Overflow in idn2_to_ascii_4i in GNU libidn2

Heap-based Buffer Overflow in idn2_to_ascii_4i in GNU libidn2

CVE-2019-18224 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.

Learn more about our Web Application Penetration Testing UK.