#VU63785 Out-of-bounds read in radare2
Vulnerability identifier: #VU63785
Vulnerability risk: Medium
CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-125
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
radare2
Universal components / Libraries /
Software for developers
Vendor: Radare
Description
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to a boundary condition in string_scan_range. A remote attacker can trigger out-of-bounds read error and read contents of memory on the system or perform a denial of service (DoS) attack.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
radare2: 5.6.0 - 5.6.9
External links
http://huntr.dev/bounties/8a3dc5cb-08b3-4807-82b2-77f08c137a04
http://github.com/radareorg/radare2/commit/193f4fe01d7f626e2ea937450f2e0c4604420e9d
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
