Open Chinese Convert (OpenCC) 1.0.5 allows attackers to cause a denial of service (segmentation fault) because BinaryDict::NewFromFile in BinaryDict.cpp may have out-of-bounds keyOffset and valueOffset values via a crafted .ocd file.
References
| Link | Resource |
|---|---|
| https://github.com/BYVoid/OpenCC/issues/303 | Exploit Vendor Advisory |
| https://github.com/BYVoid/OpenCC/issues/303 | Exploit Vendor Advisory |
Configurations
History
21 Nov 2024, 03:53
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/BYVoid/OpenCC/issues/303 - Exploit, Vendor Advisory |
Information
Published : 2018-09-13 02:29
Updated : 2024-11-21 03:53
NVD link : CVE-2018-16982
Mitre link : CVE-2018-16982
CVE.ORG link : CVE-2018-16982
JSON object : View
Products Affected
byvoid
- open_chinese_convert
CWE
CWE-125
Out-of-bounds Read