CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
35.7%
Multiple integer overflows in glib/gbase64.c in GLib before 2.20 allow
context-dependent attackers to execute arbitrary code via a long string
that is converted either (1) from or (2) to a base64 representation.
Author | Note |
---|---|
jdstrand | vulnerable code does not exist in Ubuntu 6.06 (code not added until 2.12) |