CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-5116

The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.063

EPSS Ranking 90.5%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.exploit-db.com/exploits/33384
http://www.osvdb.org/107083
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9761
http://www.exploit-db.com/exploits/33384
http://www.osvdb.org/107083
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9761

Products affected by CVE-2014-5116

Cairographics » Cairo » Version: 1.10.2

cpe:2.3:a:cairographics:cairo:1.10.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-5116

Products

Pricing

Contact Us