CVE-2016-10721

CRITICAL

partclone 0.2.87 - Heap-Based Buffer Overflow via Image Header Validation

Title source: llm
STIX 2.1

Description

partclone.restore in Partclone 0.2.87 is prone to a heap-based buffer overflow vulnerability due to insufficient validation of the partclone image header. An attacker may be able to execute arbitrary code in the context of the user running the affected application.

References (1)

Core 1
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/Thomas-Tsai/partclone/issues/82

Scores

CVSS v3 9.8
EPSS 0.0218
EPSS Percentile 80.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
partclone/partclone 0.2.87
Published May 02, 2018
Tracked Since Feb 18, 2026