Published: 01/01/2022 Updated: 08/08/2023

CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8

VMScore: 516

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:P

The giftrans function in giftrans 1.12.2 contains a stack-based buffer overflow because a value inside the input file determines the amount of data to write. This allows an malicious user to overwrite up to 250 bytes outside of the allocated buffer with arbitrary data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
giftrans project giftrans 1.12.2
debian debian linux 9.0
debian debian linux 10.0
debian debian linux 11.0

Debian Bug report logs - #1002739 giftrans: CVE-2021-45972: Stack based buffer overflow in the giftrans function Package: giftrans; Maintainer for giftrans is Debian QA Group <packages@qadebianorg>; Source for giftrans is src:giftrans (PTS, buildd, popcon) Reported by: Kolja Grassmann <koljagrassmann@mailboxorg> D ...

CWE-1284 http://web.archive.org/web/20150801185019/https://www.abdn.ac.uk/tools/ibmpc/giftrans/index.hti https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1002739 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1002739 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-45972

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect