Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string
This buffer overflow vulnerability in Arm Whois 3.11 allows local attackers to crash the application by supplying an oversized input string. Attackers can exploit this by pasting a malicious buffer into the IP address or domain input field. This could lead to a denial of service condition.
Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 bytes into the IP address or domain input field to trigger a denial of service condition.
Local attackers are at medium risk of crashing the application, posing a moderate threat to the application's availability.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0
Affected Products
4
References
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability
Impact