CVE-2014-8503 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Binutils
Severity
7.5HIGHNVD
EPSS
12.7%
top 6.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 9
Latest updateMay 17
Description
Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.
CVSS vector
AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4
Affected Packages2 packages
Also affects: Fedora 19, 20, 21, Ubuntu Linux 10.04, 12.04, 14.04, 14.10
🔴Vulnerability Details
3📋Vendor Advisories
3💬Community
10Bugzilla▶
CVE-2014-8503 msp430-binutils: binutils: stack overflow in objdump when parsing specially crafted ihex file [fedora-all]↗2014-11-11
Bugzilla▶
CVE-2014-8503 mingw-binutils: binutils: stack overflow in objdump when parsing specially crafted ihex file [fedora-all]↗2014-11-11
Bugzilla▶
CVE-2014-8503 avr-binutils: binutils: stack overflow in objdump when parsing specially crafted ihex file [fedora-all]↗2014-11-11
Bugzilla▶
CVE-2014-8503 binutils: stack overflow in objdump when parsing specially crafted ihex file [fedora-all]↗2014-11-11
Bugzilla▶
CVE-2014-8503 cross-binutils: binutils: stack overflow in objdump when parsing specially crafted ihex file [epel-all]↗2014-11-11