Vulnerability CVE-2018-16742: Information

Description

An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered via a command-line parameter.

Severity: HIGH (7.8) Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2018-16742
Published: Sept. 13, 2018
Modified: Aug. 24, 2020
Error type identifier: CWE-787

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
mgettysisyphus1.2.1-alt11.2.1-alt1ALT-PU-2020-3522-1263574Fixed
mgettyp101.2.1-alt11.2.1-alt1ALT-PU-2020-3522-1263574Fixed
mgettyp91.2.1-alt11.2.1-alt1ALT-PU-2020-3533-1263575Fixed
mgettyc10f11.2.1-alt11.2.1-alt1ALT-PU-2020-3522-1263574Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://www.x41-dsec.de/lab/advisories/x41-2018-007-mgetty
  • Exploit
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:mgetty_project:mgetty:*:*:*:*:*:*:*:*
      End excliding
      1.2.1
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.1
Back to top