CVE-2017-6596
MEDIUMpartclone 0.2.89 - Denial of Service via Heap-Based Buffer Overflow in Image Header
Title source: llmDescription
partclone.chkimg in partclone 0.2.89 is prone to a heap-based buffer overflow vulnerability due to insufficient validation of the partclone image header. An attacker may be able to launch a 'Denial of Service attack' in the context of the user running the affected application.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://github.com/insidej/Partclone_HeapOverFlow/blob/master/README.md
Scores
CVSS v3
5.5
EPSS
0.0079
EPSS Percentile
51.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (1)
partclone_project/partclone
0.2.89
Published
Mar 10, 2017
Tracked Since
Feb 18, 2026