CVE-2017-5332

Summary

The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.

Affected Software

VendorProductVersion RangeStatus
Debianicoutilsbefore 0.31.1affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References