CVEs-PoC/2017/CVE-2017-9166.md at 2d745dea058dce4b2f2b4b0b4da10f1e24d40b3e - CVEs-PoC - MS-GitHub-Backup (Gitea)

CalvinBackup/CVEs-PoC

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-24 07:34:01 +02:00

Files

T

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

672 B

Raw Blame History

CVE-2017-9166

Description

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:18:11.

POC

Reference

https://blogs.gentoo.org/ago/2017/05/20/autotrace-multiple-vulnerabilities-the-autotrace-nightmare/

Github