Netwide Assembler (NASM) 2.14rc15 - NULL Pointer Dereference Exploit

Exploit Title: Netwide Assembler NASM 2.14rc15 NULL Pointer Dereference PoC Exploit Author: Fakhri Zulkifli Vendor Homepage: https://www.nasm.us/ Software Link: https://www.nasm.us/pub/nasm/releasebuilds/?C=M;O=D Version: 2.14rc15 and earlier Tested on: 2.14rc15 CVE : CVE-2018-16517 asm/labels.c ...

CVE-2018-19209

Netwide Assembler NASM 2.14rc15 has a NULL pointer dereference in the function findlabel in asm/labels.c that will lead to a DoS attack...

CVE-2018-19214

Netwide Assembler NASM 2.14rc15 has a heap-based buffer over-read in expandmmacparams in asm/preproc.c for insufficient input...

CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

CVE-2018-1000667

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption crashed of nasm when handling a crafted file due to function assemblefileinname, dependptr at asm/nasm.c:482. vulnerability in function assemblefileinname, dependptr at asm/nasm.c:482. that can result in...

Memory corruption

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption crashed of nasm when handling a crafted file due to function assemblefileinname, dependptr at asm/nasm.c:482. vulnerability in function assemblefileinname, dependptr at asm/nasm.c:482. that can result in...

CVE-2018-1000667

CVE-2018-1000667 is referenced in connected content as a memory corruption (crash) in Netwide Assembler (NASM) when handling a crafted file. Specifically, the issue is described in the function assemble_file(inname, depend_ptr) at asm/nasm.c:482, affecting NASM 2.14rc15 and earlier. The vulnerabi...

CVE-2018-16382

Netwide Assembler NASM 2.14rc15 has a buffer over-read in x86/regflags.c...