The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote malicious users to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted WASM file that triggers an incorrect r_hex_bin2str call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
radare radare2 2.0.0 |