Back to search
CVE-2006-2362
Published: May 15, 2006
Modified: Jan 16, 2025
PUBLISHED
Description
Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format (TekHex) record in which the length character is not a valid hexadecimal character.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20188
third-party-advisory
x_refsource_SECUNIA
20550
third-party-advisory
x_refsource_SECUNIA
22932
third-party-advisory
x_refsource_SECUNIA
27441
third-party-advisory
x_refsource_SECUNIA
2006-0034
vendor-advisory
x_refsource_TRUSTIX
17950
vdb-entry
x_refsource_BID
[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted.
mailing-list
x_refsource_MLIST
ADV-2007-3665
vdb-entry
x_refsource_VUPEN
SUSE-SR:2006:026
vendor-advisory
x_refsource_SUSE
ADV-2006-1924
vdb-entry
x_refsource_VUPEN
1018872
vdb-entry
x_refsource_SECTRACK
20531
third-party-advisory
x_refsource_SECUNIA
USN-292-1
vendor-advisory
x_refsource_UBUNTU
APPLE-SA-2007-10-30
vendor-advisory
x_refsource_APPLE
binutils-libbfd-bo(26644)
vdb-entry
x_refsource_XF
http://sourceware.org/bugzilla/show_bug.cgi?id=2584
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now