Shodan
Vulnerabilities
Vulnerable Software
Libdwarf Project:  >> Libdwarf  >> 2006-06-12  Security Vulnerabilities
CVE-2016-5038
The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted string offset for .debug_str.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-5039
The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted object with all-bits on.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-5040
libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a large length value in a compilation unit header.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-5042
The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-5043
The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-5044
The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-02-17
CVE-2016-8679
The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
CVSS Score
6.5
EPSS Score
0.008
Published
2017-02-15
CVE-2016-8680
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
CVSS Score
6.5
EPSS Score
0.008
Published
2017-02-15
CVE-2016-8681
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
CVSS Score
5.5
EPSS Score
0.005
Published
2017-02-15
CVE-2015-8750
libdwarf 20151114 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a debug_abbrev section marked NOBITS in an ELF file.
CVSS Score
6.5
EPSS Score
0.006
Published
2017-02-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved