CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-4895

Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://code.google.com/p/gperftools/source/browse/tags/perftools-0.4/ChangeLog
http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/
http://code.google.com/p/gperftools/source/browse/tags/perftools-0.4/ChangeLog
http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/

Products affected by CVE-2005-4895

Csilvers » Gperftools » Version: 0.1

cpe:2.3:a:csilvers:gperftools:0.1
Csilvers » Gperftools » Version: 0.2

cpe:2.3:a:csilvers:gperftools:0.2
Csilvers » Gperftools » Version: 0.3

cpe:2.3:a:csilvers:gperftools:0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4895

Products

Pricing

Contact Us