ICU CVE-2017-7867 Multiple Heap Buffer Overflow Vulnerabilities

ICU is prone to multiple heap based buffer overflow vulnerabilities.

Attackers can exploit these issues to execute arbitrary code within the context of the application. Failed exploit attempts will likely cause a denial-of-service condition.

Information

Bugtraq ID: 97672
Class: Design Error
CVE: CVE-2017-7867

Remote: Yes
Local: No
Published: Feb 13 2017 12:00AM
Updated: Feb 13 2017 12:00AM
Credit: heninger
Vulnerable: ICU ICU 0

Not Vulnerable:

References:

• ICU Home Page (ICU)
  
• Changeset 39671 (icu)
  
• icu: Heap-buffer-overflow in utf8TextAccess (chromium)
  

Source: www.securityfocus.com