CVE-2014-1943CVE-2014-1943

Affected configuration(s):

cpe:/a:fine_free_file_project:fine_free_file:5.0
cpe:/a:fine_free_file_project:fine_free_file:5.1
cpe:/a:fine_free_file_project:fine_free_file:5.2
cpe:/a:fine_free_file_project:fine_free_file:5.3
cpe:/a:fine_free_file_project:fine_free_file:5.4
cpe:/a:fine_free_file_project:fine_free_file:5.7
cpe:/a:fine_free_file_project:fine_free_file:5.8
cpe:/a:fine_free_file_project:fine_free_file:5.9
cpe:/a:fine_free_file_project:fine_free_file:5.10
cpe:/a:fine_free_file_project:fine_free_file:5.11
cpe:/a:fine_free_file_project:fine_free_file:5.12
cpe:/a:fine_free_file_project:fine_free_file:5.13
cpe:/a:fine_free_file_project:fine_free_file:5.14
cpe:/a:fine_free_file_project:fine_free_file:5.15
cpe:/a:fine_free_file_project:fine_free_file:5.16

Date published: 2014-02-18T14:55:04.377-05:00

Date last modified: 2014-11-18T22:00:21.810-05:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://lists.opensuse.org/opensuse-updates/2014-03/msg00034.html

Summary: Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.