An Integer overflow in the getElfSections function in p_vmlinx.cpp in UPX 3.95 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an allocation of excessive memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
upx project upx 3.95 |