CVE-2021-43814 - Rizin is a UNIX-like reverse engineering framework and command-line toolset. In versions up to and i

CVE-2021-43814

Summary

Rizin is a UNIX-like reverse engineering framework and command-line toolset. In versions up to and including 0.3.1 there is a heap-based out of bounds write in parse_die() when reversing an AMD64 ELF binary with DWARF debug info. When a malicious AMD64 ELF binary is opened by a victim user, Rizin may crash or execute unintended actions. No workaround are known and users are advised to upgrade.

References

https://github.com/rizinorg/rizin/issues/2083
https://github.com/rizinorg/rizin/security/advisories/GHSA-hqqp-vjcm-mw8r
https://github.com/rizinorg/rizin/commit/aa6917772d2f32e5a7daab25a46c72df0b5ea406

Vulnerable Configurations

cpe:2.3:a:rizin:rizin:*:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:*:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 22-12-2021 - 21:29)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

Last major update

22-12-2021 - 21:29

Published

13-12-2021 - 20:15

Last modified

22-12-2021 - 21:29