Published: 06/09/2018 Updated: 10/11/2020

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the malicious user to cause a denial of service via a crafted file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
nasm netwide assembler
nasm netwide assembler 2.14
nasm netwide assembler 2.14.0

asm/labelsc in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the attacker to cause a denial of service via a crafted file ...

# Exploit Title: Netwide Assembler (NASM) 214rc15 NULL Pointer Dereference (PoC) # Date: 2018-09-05 # Exploit Author: Fakhri Zulkifli # Vendor Homepage: wwwnasmus/ # Software Link: wwwnasmus/pub/nasm/releasebuilds/?C=M;O=D # Version: 214rc15 and earlier # Tested on: 214rc15 # CVE : CVE-2018-16517 asm/labelsc in Netwide Asse ...

Netwide Assembler (NASM) version 214rc15 null pointer dereference proof of concept exploit ...

CWE-476 https://fakhrizulkifli.github.io/CVE-2018-16517.html https://bugzilla.nasm.us/show_bug.cgi?id=3392513 https://www.exploit-db.com/exploits/46726/http://packetstormsecurity.com/files/152566/Netwide-Assembler-NASM-2.14rc15-Null-Pointer-Dereference.html http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00017.html http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00015.html https://nvd.nist.gov https://www.exploit-db.com/exploits/46726 https://access.redhat.com/security/cve/cve-2018-16517

CVE-2018-16517

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect