Published: 04/12/2017 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote malicious users to cause a denial of service (_bfd_elf_get_symbol_version_string buffer over-read and application crash) or possibly have unspecified other impact via a crafted ELF file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu binutils 2.29.1

nmc and objdumpc in GNU Binutils 2291 mishandle certain global symbols, which allows remote attackers to cause a denial of service (_bfd_elf_get_symbol_version_string buffer over-read and application crash) or possibly have unspecified other impact via a crafted ELF file ...

CWE-125 https://sourceware.org/bugzilla/show_bug.cgi?id=22443 https://security.gentoo.org/glsa/201811-17 https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=160b1a618ad94988410dc81fce9189fcda5b7ff4 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-17125

CVE-2017-17125

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect