Denial Of Service (DoS)

upx is vulnerable to denial of service. The vulnerability exists because the heap-based buffer over-read in accuagetbe32 function of miniacc.h, allowing an attacker to cause an application crash through the maliciously crafted Mach-O file...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the accuagetbe32 function in miniacc.h via a crafted Mach-O file. Remediation Upgrade upx to version 4.2.1 or higher. References - GitHub Commit - GitHub Issue Credit: giantbranch of NSFOCUS Security Team...

CVE-2020-27799

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27799

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

UBUNTU-CVE-2020-27799

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

Heap overflow

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27799

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27799

A heap-based buffer over-read was discovered in the accuagetbe32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27799

CVE-2020-27799 describes a heap-based buffer over-read in UPX 4.0.0, triggered by a crafted Mach-O file. The vulnerable component is acc_ua_get_be32 in miniacc.h. The CVE’s metrics indicate a high-severity, local, user-interaction-required flaw with a base score of 7.8. The provided connected doc...