NULL Pointer Dereference Vulnerability in bfd_pef_scan_start_address() of binutils

NULL Pointer Dereference Vulnerability in bfd_pef_scan_start_address() of binutils

CVE-2020-35496 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. This flaw affects binutils versions prior to 2.34.

Learn more about our Web Application Penetration Testing UK.