CVE-2017-8845 - CERT CVE
ID CVE-2017-8845
Sažetak The lzo1x_decompress function in lzo1x_d.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted archive.
Reference
CVSS
Base: 4.3
Impact: 2.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:N/AC:M/Au:N/C:N/I:N/A:P
Zadnje važnije ažuriranje 09-12-2022 - 16:03
Objavljeno 08-05-2017 - 14:29