libmimedir allows remote attackers to execute arbitrary code via a VCF file with two NULL bytes at the end of the file, related to "free" function calls in the "lexer's memory clean-up procedure."
References
Configurations
History
No history.
Information
Published : 2015-06-16 16:59
Updated : 2024-02-28 15:21
NVD link : CVE-2015-3205
Mitre link : CVE-2015-3205
CVE.ORG link : CVE-2015-3205
JSON object : View
Products Affected
libmimedir_project
- libmimedir
CWE
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')