CVE-2016-6354

2016-09-21T14:25:00
ID CVE-2016-6354
Type cve
Reporter cve@mitre.org
Modified 2017-01-18T02:59:00

Description

Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.