Lucene search

K
prionPRIOn knowledge basePRION:CVE-2013-4397
HistoryOct 17, 2013 - 11:55 p.m.

Integer overflow

2013-10-1723:55:00
PRIOn knowledge base
www.prio-n.com
4

AI Score

8.3

Confidence

High

EPSS

0.034

Percentile

91.5%

Multiple integer overflows in the th_read function in lib/block.c in libtar before 1.2.20 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) name or (2) link in an archive, which triggers a heap-based buffer overflow.