Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-6323Integer Overflow or Wraparound in Binutils

CWE-190Integer Overflow or Wraparound12 documents9 sources
Severity
7.8HIGHNVD
EPSS
1.0%
top 22.72%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
GNU Binutils
Timeline
PublishedJan 26
Latest updateAug 9

Description

The elf_object_p function in elfcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfd_size_type multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

Debiangnu/binutils< 2.30-3+3
NVDgnu/binutils2.29.1

🔴Vulnerability Details

3
GHSA
GHSA-6j25-67w4-83v9: The elf_object_p function in elfcode2022-05-13
CVEList
CVE-2018-6323: The elf_object_p function in elfcode2018-01-26
OSV
CVE-2018-6323: The elf_object_p function in elfcode2018-01-26

💥Exploits & PoCs

1
Exploit-DB
GNU binutils 2.26.1 - Integer Overflow (PoC)2018-02-14

📋Vendor Advisories

4
Ubuntu
GNU binutils vulnerabilities2023-08-09
Ubuntu
GNU binutils vulnerabilities2021-07-21
Red Hat
binutils: Integer overflow in elf_object_p function in elfcode.h2018-01-25
Debian
CVE-2018-6323: binutils - The elf_object_p function in elfcode.h in the Binary File Descriptor (BFD) libra...2018

💬Community

3
Bugzilla
CVE-2018-6323 binutils: Integer overflow in elf_object_p function in elfcode.h2018-01-29
Bugzilla
CVE-2018-6323 binutils: Integer overflow in elf_object_p function in elfcode.h [fedora-all]2018-01-29
Bugzilla
CVE-2018-6323 mingw-binutils: binutils: Integer overflow in elf_object_p function in elfcode.h [epel-all]2018-01-29
CVE-2018-6323 — Integer Overflow or Wraparound | cvebase