CVE-2018-1000663

jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function _jsi_evalcode from jsiEval.c that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code.

Published : 2018-09-06 17:29 Updated : 2018-10-25 14:49

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Jsish Jsish 2.4.70_2.047 cpe:/a:jsish:jsish:2.4.70_2.047
  1. Jsish (1) Search CVE
    1. Jsish (1) Search CVE
      1. 2.4.70_2.047

CWE

ID Name Description Links
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. CVE

History of changes

Date Event
2018-10-25 14:49
2018-09-06 17:29

New CVE