mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
983 B
983 B
CVE-2020-10809
Description
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service.
POC
Reference
- https://github.com/Loginsoft-Research/hdf5-reports/tree/master/Vuln_1
- https://github.com/Loginsoft-Research/hdf5-reports/tree/master/Vuln_1
- https://research.loginsoft.com/bugs/heap-overflow-in-decompress-c-hdf5-1-13-0/
- https://research.loginsoft.com/bugs/heap-overflow-in-decompress-c-hdf5-1-13-0/
Github
No PoCs found on GitHub currently.