10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.2%
Hanno Böck discovered that Libtasn1 incorrectly handled certain ASN.1 data.
A remote attacker could possibly exploit this with specially crafted ASN.1
data and cause applications using Libtasn1 to crash, resulting in a denial
of service, or possibly execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.10 | noarch | libtasn1-6 | < 4.0-2ubuntu0.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libtasn1-6-dbg | < 4.0-2ubuntu0.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libtasn1-6-dev | < 4.0-2ubuntu0.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libtasn1-bin | < 4.0-2ubuntu0.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libtasn1-6 | < 3.4-3ubuntu0.2 | UNKNOWN |
Ubuntu | 14.04 | noarch | libtasn1-6-dbg | < 3.4-3ubuntu0.2 | UNKNOWN |
Ubuntu | 14.04 | noarch | libtasn1-6-dev | < 3.4-3ubuntu0.2 | UNKNOWN |
Ubuntu | 14.04 | noarch | libtasn1-bin | < 3.4-3ubuntu0.2 | UNKNOWN |
Ubuntu | 12.04 | noarch | libtasn1-3 | < 2.10-1ubuntu1.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | libtasn1-3-bin | < 2.10-1ubuntu1.3 | UNKNOWN |