Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24969
HistoryApr 10, 2020 - 1:10 a.m.

Arbitrary Code Execution

2020-04-1001:10:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15

EPSS

0.008

Percentile

82.2%

glibc is vulnerable to arbitrary code execution. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library read timezone files. If a carefully-crafted timezone file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application.