CVE-2018-0644
MEDIUMUbuntu ORCA panda-client2 <=1:1.4.9/2.0.0 - Authenticated DoS via Buffer Overflow
Title source: llmDescription
Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-client2) 1:1.4.9+p41-u4jma1 and earlier, Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2) 1:2.0.0+p48-u4jma1 and earlier, and Ubuntu16.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2) 1:2.0.0+p48-u5jma1 and earlier allows authenticated attackers to cause denial-of-service (DoS) condition via unspecified vectors.
References (2)
Core 2
Core References
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN37376131/index.html
Vendor Advisory x_refsource_confirm
https://www.orca.med.or.jp/news/vulnerability_2018-07-18-1.html
Scores
CVSS v3
6.5
EPSS
0.0064
EPSS Percentile
70.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (2)
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
16.04
Published
Sep 07, 2018
Tracked Since
Feb 18, 2026