4 matches found
GLSA-202101-24 : cfitsio: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202101-24 cfitsio: Multiple vulnerabilities Multiple vulnerabilities have been discovered in cfitsio. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...
Buffer overflow
NASA CFITSIO prior to 3.43 is affected by: Buffer Overflow. The impact is: arbitrary code execution. The component is: over 40 source code files were changed. The attack vector is: remote unauthenticated attacker. The fixed version is: 3.43. NOTE: this CVE refers to the issues not covered by...
CVE-2018-3847
Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this...
CVE-2018-3847
CVE-2018-3847 affects CFITSIO library 3.42. The vulnerability is a stack-based buffer overflow in the image parsing functionality, triggered by specially crafted FIT images. An attacker could deliver a FIT image to cause arbitrary code execution. Public details in the connected Nessus entry indic...