CVE-2018-1000661

jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference vulnerability in Jsi_LogMsg (jsiUtils.c:196) that can result in Crash due to segmentation fault. This attack appear to be exploitable via the victim executing specially crafted javascript code. This vulnerability appears to have been fixed in 2.4.69.

Published : 2018-09-06 17:29 Updated : 2018-10-25 15:03

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Jsish Jsish 2.4.67 cpe:/a:jsish:jsish:2.4.67
  1. Jsish (1) Search CVE
    1. Jsish (1) Search CVE
      1. 2.4.67

CWE

ID Name Description Links
CWE-476 NULL Pointer Dereference A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. CVE

History of changes

Date Event
2018-10-25 15:03
2018-09-06 17:29

New CVE